Re: is iptables enough?
>>>>> "Jones" == Jones <jones_mb@yahoo.com> writes:
Jones> I am planning to replace a (dead) Windows 2000 computer
Jones> that was used as a web server and email server with a
Jones> Debian Linux solution. This machine is connected to the
Jones> net via DSL and would run apache and exim/qpopper and sshd.
Jones> Everything else would be turned off. It is a small church
Jones> and their current site is not very busy, but she says they
Jones> do get a lot of email.
Jones> Am I right in assuming that iptabes is enough as a firewall
Jones> solution and that I would not need to buy any additional
Jones> software. That is what I understand from my past
Jones> experience with Debian/iptables as a server and from the
Jones> files at debian.org security howto at
Jones> (http://www.debian.org/doc/manuals/securing-debian-howto/index.en.html)
You could use UML (user-mode-linux.sf.net) to split up the systems
(apache in 1, email in another) as an additional layer of
protection. .deb's are available although you probably won't to grab
unstable's versions to be reasonably up to date.
Sincerely,
Adrian Phillips
--
Your mouse has moved.
Windows NT must be restarted for the change to take effect.
Reboot now? [OK]
Reply to: