Re: Attracting newbies (Was Booting Debian/testing fails)

To: debian-user@lists.debian.org
Subject: Re: Attracting newbies (Was Booting Debian/testing fails)
From: Ron Johnson <ron.l.johnson@cox.net>
Date: Wed, 07 Feb 2007 16:56:31 -0600
Message-id: <[🔎] 45CA591F.6070009@cox.net>
In-reply-to: <[🔎] 20070207195754.GE795@localhost.localdomain>
References: <[🔎] 45C94A92.30800@cox.net> <[🔎] 45C94D8B.8050602@gmail.com> <[🔎] 45C94E32.6050000@cox.net> <[🔎] 45C9518A.1000901@gmail.com> <[🔎] 20070207103959.7d846d54@think.homenet> <[🔎] 45C9DA7E.9090508@cox.net> <[🔎] 20070207183624.61a46dd0@think.homenet> <[🔎] 45CA06CA.7010203@cox.net> <[🔎] 20070207193125.5a61ad76@think.homenet> <[🔎] 45CA187F.9070709@cox.net> <[🔎] 20070207195754.GE795@localhost.localdomain>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 02/07/07 13:57, Andrew Sackville-West wrote:
> On Wed, Feb 07, 2007 at 12:20:47PM -0600, Ron Johnson wrote:
>> On 02/07/07 11:31, Andrei Popescu wrote:
>>
>>> If I were to transform my firewall machine in a mailserver then IMAP
>>> would be the best choice to access it.
>> That's the *second worst* place to put it.
>>
> 
> please enlighten. I am in the process of re-examining my home lan. My
> new mobo on the server includes to nic's so I am thinking of using my
> server as the firewall as well... you seem, from the above, to think
> this is a bad idea. I don't doubt that it is...

Machines exposed to the Internet should have as few services on them
as possible.  This reduces the threat "surface" (i.e., the number of
available possible exploits.

Thus, the device "you" should expose to Internet should only be a
router+firewall and web cache (if needed).  ssh on that box should
only be visible to the LAN.

Have the firewall *redirect* incoming imaps requests to your server.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFylkfS9HxQb37XmcRArPDAKDKreix8BZLz6MAlPTyJiyCVdiZDACgq2cJ
qaV1OLWJT/o7MquFWd70QeQ=
=o1jE
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- firewall/service configs (was a bunch of other things)
  - From: Andrew Sackville-West <andrew@farwestbilliards.com>

References:
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Ron Johnson <ron.l.johnson@cox.net>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Michael Pobega <pobega@gmail.com>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Ron Johnson <ron.l.johnson@cox.net>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Michael Pobega <pobega@gmail.com>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Andrei Popescu <andreimpopescu@gmail.com>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Ron Johnson <ron.l.johnson@cox.net>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Andrei Popescu <andreimpopescu@gmail.com>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Ron Johnson <ron.l.johnson@cox.net>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Andrei Popescu <andreimpopescu@gmail.com>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Ron Johnson <ron.l.johnson@cox.net>
- Re: Attracting newbies (Was Booting Debian/testing fails)
  - From: Andrew Sackville-West <andrew@farwestbilliards.com>

Prev by Date: Re: SpamAssassin/ProcMail Questions
Next by Date: Re: documentation for novice and newbies
Previous by thread: Re: Attracting newbies (Was Booting Debian/testing fails)
Next by thread: firewall/service configs (was a bunch of other things)
Index(es):
- Date
- Thread