Re: How to stop imesh with iptables

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> > > am I the only person that denies everything by default and
> > > only allows the protocols through the firewall that I
> > > feel people need to use? 
> >
> > As always:
> >     Depends on the requirements of the firewall.
> 
> I have yet to see a case made for other than default deny that was not full
> of holes     ....just like their firewalls 8-)

There is no doubt that the default "deny" and just opening the services that
are "required" to be accepted is _the_ requirement of any sane firewall.

Ramin


[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux