* martin f. krafft: > How does a firewall help? If the mission-critical server needs to > provide HTTP access, the firewall will have port 80 open. There are gateways which can filter at the HTTP level. Most of them don't have fewer security bugs than Apache, but they often help against cross-site scripting and SQL injection attacks against applications running on that web server.