James Knott wrote:
it that way, so that even if someone manages to break WPA, they're still outside my firewall and need SSH or OpenVPN to reach my network. Also,
don't you think that if somebody is able to break your WPA, he will not be smart enough to break the rest? (yes, I know the weakiest part is the password backup :-) anyway, I think openSUSE don't allow enough importance to the firewall problem. I mean the Susefirewall2 is said to be extremely good (by the dev) and I'm pretty sure it is, but it is so little documented that this makes it useless... * why a firewall at all We speak of a server, here, so no user problem. if only the needed ports are listened, why should a firewall be used? seems true, however, I may have found some clue... * how to protect from intrusion or attacks? having no firewall let the security of your server at charge of the given daemon (sshd, httpd...). Is this daemon able to manage it, this is what I don't know. what I know is that I have a professional router (very cheap one, namely SMCWBR14T-G) with a decent documentation, and it claim to have a firewall able to stop attacks (DOS, for example) and is able to warn the admin when such attacks come (and have already warned me for some such things) Be warned than I don't pretend to be specially skilled. On the contrary, I read advices and find confused. I'm nearly sure susefirewall will adress also such things, but would like to know if it's really worth the supplementary work - doc really needed jdd -- Jean-Daniel Dodin Président du CULTe www.culte.org -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org