[lug] Firewall != Linux, Was -> Broadband

Wayde Allen wallen at boulder.nist.gov
Tue Aug 1 16:31:51 MDT 2000

On Tue, 1 Aug 2000, Chris M wrote:

> > And why was that so? Because of a glitch/bug in the Linux code?
> A security hole.  wu-ftpd, sendmail, etc.  A modem connected to the computer
> in one case. Or a simple DoS, any number of things.  I mean the sky is truly
> the limit with so many knobs to turn and lock down.

> If Linux worked great as a firewall
> and I was sure I wouldn't get calls in the middle of the night, I'd install
> them.
> So let's admit Linux isn't as good as a commercial firewall then, because
> the incidence of trouble (where trouble == firewall compromise) is far lower
> for commercial products since they do eliminate a large component of
> failure: human judgment and training.

OK, I think I've pulled out the important parts of your position.  Namely,
Linux has too many options so that the configuration isn't exactly
trivial.  If I've missed something let me know.

- Wayde
  (wallen at boulder.nist.gov)

More information about the LUG mailing list