Curt Purdy | 2 Apr 14:39 2002

RE: Linux firewall

Have used both Linux and FreeBSD for firewalling, and though Linux is very
easy with some of the auto setup distros out there, if you are a business
with assets to protect, I would trust BSD as a much more stable platform for
firewalling (course some idiots out there are actually using windoze isa for
firewalling, can we say stable :)

As far as EEye, I believe you will find those were merely automated scans
that were coming from their ip's.


-----Original Message-----
From: full-disclosure-admin <at>
[mailto:full-disclosure-admin <at>]On Behalf Of Denis Dimick
Sent: Wednesday, June 18, 2003 9:45 PM
To: Gabe Arnold
Cc: Spencer, Gary TRI-S INC; full-disclosure <at>
Subject: Re: [Full-Disclosure] Linux firewall

Dont know about BSD.. But I would use Linux.. This is what I use everyday
for the past 5 years.. Have yet to have anyone get thru.. Even the morons
at EEye have tried..

On Wed, 18 Jun 2003, Gabe Arnold wrote:

> I would suggest you use an OpenBSD 3.3 setup with the native PF
> (Packet Filter)package which is based on the 'BSD IPF package.
> It's quite nice, easy to use, and very secure.  I'd check out
> and for a good overview of the
> PF package and how to use it.
(Continue reading)

Curt Purdy | 2 Apr 14:22 2002

RE: Linux firewall

Considering that you can get a cisco 501 for around $500 and as long as you
don't have internal servers, is pretty much plug and play with it's 3rd
generation gui interface, it's pretty hard to beat for the SMB market.  The
gui even makes internal server natting pretty simple.


-----Original Message-----
From: full-disclosure-admin <at>
[mailto:full-disclosure-admin <at>]On Behalf Of Michael
Sent: Thursday, June 19, 2003 5:11 AM
To: full-disclosure <at>
Subject: Re: [Full-Disclosure] Linux firewall

On Wed Jun 18, 2003 at 04:4525PM -0400, Spencer, Gary  TRI-S INC wrote:
> Hello everyone. I have been following the discussions for a few months now
> and enjoy the technical information that everyone has to share. What would
> your recommendations be for a Linux firewall? And would you use a 50,000
> Cisco firewall instead??

As most others already pointed out, you have a wide variety of
possibilities to choose, and it is very hard to give some
recommandations, especially as none of the readers here has the
necessary background knowlegde about what you want to protect and
against which kind of attackers.

Step back and think about it. A firewall is not a piece of hardware,
but a sheet of paper that contains information about your threats, how
dangerous they are, how likely they will occur, and how you want to
(Continue reading)

Curt Purdy | 16 Apr 12:57 2002

RE: Security firm Symantec has rubbed subscribers to the Full-Disclosure mailing list the wrong way

Yes, in this time of the "Busch"wackers, it is all too easy for the gov'ment to rob us of our freedom.  And unfortunately there are far too many corporate types ready to take advantage of that in the name of the almighty buck. Wired is cool though.  They went on to say " He did not say, though, how legislators would determine the difference between malicious information and that used for legitimate security research, or whether such a law might compromise freedom of speech."
Information Security Engineer
DP Solutions


If you spend more on coffee than on IT security, you will be hacked.
What's more, you deserve to be hacked.
-- former White House cybersecurity zar Richard Clarke

-----Original Message-----
From: full-disclosure-admin <at> [mailto:full-disclosure-admin <at>]On Behalf Of Geoff Shively
Sent: Monday, September 15, 2003 4:40 PM
To: full-disclosure <at>
Subject: [inbox] [Full-Disclosure] Security firm Symantec has rubbed subscribers to the Full-Disclosure mailing list the wrong way

"Security firm Symantec has rubbed subscribers to the Full-Disclosure mailing list the wrong way by due to a quote attributed to its chief operating officer, John Schwarz.

In a Wired story titled " Just Say No to Viruses and Worms", Schwarz was quoted as calling for laws to make it a criminal offence to share information and tools online which could be used by malicious hackers and virus writers. "


Geoff Shively, CTO
PivX Solutions, LLC
Are You Secure?