Hi all:
In the recent Westside PLUG meeting, I raised the question of security.
We newbies are typically busy figuring Linux out, and not necessarily
keeping up with security.
Let me zoom in on one question for now:
My Linux box is my workstation, not a server. I have ipchains running
(for now, let's say that I have it all properlytweaked in). At the same
time, I see solutions like these:
http://www.hotbrick.com/vpn600.html
http://netmind-firewall.com/
My question: Do solutions like the above exist because in a network,
it's easier/better to handle the security issues in one place, for
everyone? Or is there something *inherently superior* in the "hardware
firewall" approach that is compelling compared to *any* firewall
software running on a single-user desktop?
Another way of asking it: the Linux Newbie who inserts one of these
internet appliances between the Cox cable and his cable modem -- is he
ipso facto more secure than if he is just running ipchains on his
desktop?
(I use "ipchains" to mean any software firewall solution -- I don't know
any better).
Craig (the "other" Craig) :-)
(text/plain)