>
> Of course security folks will always tell you that a software solution
> isn't a very water-tight solution - especially those that run "above" the
> OS/System.
The distinction between software and hardware is becomming more and more blurred all the time. Is a OpenSoekris [1] firewall hardware or software? If a critical bug in a Cisco 6500 firewal blade can be fixed by upgrading the firmware, can it still be called a hardware firewall or is it a software firewall?
I think the more important distinction is whether the firewall runs on the same piece of hardware it is supposed to protect.
[1] http://opensoekris.sourceforge.net/
> The really expensive software firewalls (CheckPoint for example) actually
> modify the kernel processing directly
The really cheap ones that come with certain Open Source Operationg Systems too :-)
Jochem
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
