Why advocating Linux can be an up hill battle...

bscott at ntisys.com bscott at ntisys.com
Thu Apr 24 16:52:46 EDT 2003


On Thu, 24 Apr 2003, at 3:35pm, mkomarinski at wayga.org wrote:
> A few reasons why machines should be behind a firewall of some sort:
> 
> 1) The provider doesn't know/care how many machines you have, and
> thus can't charge you extra (cable companies do charge extra).
> 2) Traffic between machines is local, never going to the DSL
> router.
> 3) The firewall provides one in a number of steps to improve security.
> If a h4x0r cannot hit your box directly, there is less chance of
> security threats becoming security problems.

4) You can screw up and still be safe.  This is called "defense in depth",
   and is a key part of security design.

5) There is always a window of opportunity between the point in time when a
   vulnerability is discovered and the point in time when you deploy the
   fix/workaround/whatever.  Sometimes, that window is measured in weeks or
   even months.

> As Ben would say (and probably is saying) "Security is a process".

  Who me?  ;-)

-- 
Ben Scott <bscott at ntisys.com>
| The opinions expressed in this message are those of the author and do  |
| not represent the views or policy of any other person or organization. |
| All information is provided without warranty of any kind.              |




More information about the gnhlug-discuss mailing list