On Tue, 08 Feb 2000, you wrote:
Hey Jon... harden_suse I have the latest version of from www.suse.de/~marc but you mentioned "DMZ" and "bbfirewall v2"... got URLs for these things' homepages?
DMZ is a configuration option in 6.3 (YaST; Choose/Install Packages; Load Configuration), at least in the i386.de distro. To get all of the cool crypto stuff, I set ftp://ftp.gwdg.de/pub/linux/suse/6.3/i386.de as my installation media (sorry, I have a cable modem, you know). Actually, if you want to get down to brass tacks, ftp.gwdg.de is roughly twice as fast as ftp.suse.com, even from here in the heart of the MidWestern US <shrug>. Bodo Brauer (the spelling of his last name escapes me) has been mentioned numerous times on SLE, seeing as how his firewall implementation is the one that SuSE sets up by default (v1.something, IIRC), and v2 carries over *very* nicely into any glibc2.1/k2.2 SuSE system. You might scan the archives for it...
Take one ready-for-retirement P5 class machine and one SuSE 6.3 installation set, add the DMZ sofware installation. Spice it up just a pinch with the harden_suse PERL script and bbfirewall v2, and let your security troubles fade away.
BTW, I love the harden_suse script, the thing is absolutely draconian. }:>
hehehe; he said `draconian' ;). Actually, harden_suse ticked me off royally the first time I ran it. I hardened myself right out of my own box :[. Sorry about the public reposte, but I think this is useful for everyone :). -- -=|JP|=- Jon Pennington | Atipa Linux Solutions -o) jpennington@atipa.com | Kansas City, MO /\\ 816-241-2641 x107 | http://www.atipa.com _\_V -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/