Mailinglist Archive: opensuse (3901 mails)
| < Previous | Next > |
Security, was Duelling SAMBAs
- From: Hans Witvliet <hwit@xxxxxxxxxxx>
- Date: Fri, 07 Jan 2005 00:39:39 +0100
- Message-id: <1105054778.25219.756.camel@xxxxxxxxxx>
On Thu, 2005-01-06 at 20:11, Joaquin Menchaca wrote:
> Ãrn Einar Hansen wrote:
> For my network, due to my Linksys problems with Wi-Fi security, I avoid
> opening up any computer, as unknown neighbors can have fun. So, all of
> my computers (about a half-score of them) are firewalled, in addition to
> the main firewall. I'm now setting up a permiter network and a private
Excuse me,
But if you set up a general firewall between your network and the bad
bad world outside (which is good common practice), why setting up a
firelwall on other (local) nodes?
Either you trust your main firewall, ot you should do something about
it....
Behind your firewall: don't you trust the users behind it?
Wifi should be MAC-selected.(configured in your wifi-modem)
(or it should be outside your trusted area)
What's the point in having each and individual node having its own
firewall????
If you find a number of untrust-worthy ip-addresses, your local
dns/ip-table should deal with it. Not??
Hans.
> Ãrn Einar Hansen wrote:
> For my network, due to my Linksys problems with Wi-Fi security, I avoid
> opening up any computer, as unknown neighbors can have fun. So, all of
> my computers (about a half-score of them) are firewalled, in addition to
> the main firewall. I'm now setting up a permiter network and a private
Excuse me,
But if you set up a general firewall between your network and the bad
bad world outside (which is good common practice), why setting up a
firelwall on other (local) nodes?
Either you trust your main firewall, ot you should do something about
it....
Behind your firewall: don't you trust the users behind it?
Wifi should be MAC-selected.(configured in your wifi-modem)
(or it should be outside your trusted area)
What's the point in having each and individual node having its own
firewall????
If you find a number of untrust-worthy ip-addresses, your local
dns/ip-table should deal with it. Not??
Hans.
| < Previous | Next > |