[LUNI] CDROM based firewalls: Sentry & Redwall
K.R. Foley
kr at cybsft.com
Mon Dec 6 08:55:04 CST 2004
Carey Tyler Schug wrote:
> I found a site listing many Linux/BSD firewalls:
>
> http://www.secwiz.com/Default.aspx?tabid=36
>
> Aside: this is the first I have seen of BSD based firewalls, any general
> thoughts on using BSD vs Linux? Maybe, like Linux vs MicroSoft(TM),
> fewer crackers trying to break into BSD based systems than Linux based
> systems?
My thoughts would be this:
1) Newer BSDish OSes are generally pretty solid and secure.
2) I don't think that obfuscation or "fewer crackers trying to break
into" have anything to do with secure systems. The fact that Linux is
more secure than Windoze has NOTHING WHATSOEVER to do with the number of
people trying to break into them.
3) If you are not knowledgeable about security or firewalls, try to find
the one that is the easiest to setup and well supported, that handles
all of the types of traffic you need. There are some floppy-based
firewalls that work really well but don't (easily) support certain types
of tunneling/VPNs, etc.
>
> I couldn't follow much of the jargon, but I found two that look like
> they are ready to go for cdrom/floppy systems (no hard disk). I would
> have like the Knoppix based system but it one looked like it was just a
> bunch of tools and wasn't "run it out of the box", and the one called
> CD-ROM firewall was only beta, with no releases for a year and a half..
>
> The two that seemed the most interesting were:
>
> Sentry: http://sourceforge.net/projects/sentry/
>
> Redwall: http://sourceforge.net/projects/redwall/
>
More information about the luni
mailing list