Security Rant (was Re: ipchains issue (Re: Webmin via Apache))

[Craig White]

On Tue, 2002-06-25 at 21:32, alandd@mindspring.com wrote:

> 
> I should know about firewall configuration.  I now have a reason to learn. 
> =^)
> 
> <MyRant>
> However, as we propel Linux forward, we need to help develop tools that don't
> require the user to know how or even why he needs a firewall.  The average Joe
> just wants to know that his computer is secure because he picked the secure
> option on his install.  And, if he needs to close a port or open a port, he
> doesn't want to learn ipchains rule syntax or even port numbers, he wants to
> select an option and be on his merry way.  Not an easy task but this is the
> mindset that company in Redmond has created and our society expects.
> 
> If we want Linux on every desktop, it has to be made that easy.
> </MyRant>
> 
-----
I thoroughly disagree with this rant.
This has nothing whatsoever to do with Microsoft or Microsoft mindset.
In fact, your attitude represents the spoiled mentality of the Microsoft
user.

This is open source software - when you see a need, you should offer
your time and energies to fill it - don't be content to curse the
darkness, light a candle.

Redhat offers a simple minded 3 level firewall choice on install, all
using ipchains which is only offered on the 2.4 kernels for backwards
compatibility. You are probably wasting your time trying to learn
ipchains at this point. Netfilter/iptables is the native firewall module
for 2.4 kernels. If you want to learn something that is applicable, that
is what you should learn.

If you want simple minded firewall configuration utility, may I suggest
firestarter.

Craig