On 28/08/12 14:25, Billie Walsh wrote:
On 08/28/2012 06:49 AM, James Knott wrote:
Bob Williams wrote:
Is it safe to rely on the router firewall alone, combined with NAT, always accepting that safety is a relative term?
Well, many commercial boxes run on Linux or BSD.
My firewall/router is openSUSE 11.4 on an old Compaq computer. Of course, security in depth can be more secure than a single layer.
My only thought is, "How bad would someone want to get into your system?"
Here at home we just rely on the routers firewall. We run the cheap Cisco/Linksys routers with the DDWRT software. It's a bit better than the standard Linksys software. We turn off broadcast for wireless. That way the system is not visible to a casual scan. There's nothing here that would warrant someone spending an excessive amount of time hacking into.
Some time ago I looked at /var/log/messages and was amazed to see someone was running a script to try and get through port 22. Of course, sshd rejected every attempt, but it prompted me to move ssh to a different port. So, there's always someone out there scanning for open ports. Apart from that, I just have the usual amount of personal information on this machine. I think what I'll end up doing is continue to run both firewalls, but disable the openSUSE one temporarily for the time I want to watch a video, browse my photos, etc. Bob -- Bob Williams System: Linux 3.1.10-1.16-desktop Distro: openSUSE 12.1 (x86_64) with KDE Development Platform: 4.9.00 "release 555" Uptime: 06:00am up 16 days 7:10, 1 user, load average: 0.07, 0.08, 0.12 -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org