----- Original Message ----- From: "Adam Reynolds" <[EMAIL PROTECTED]> To: "CF-Server" <[EMAIL PROTECTED]> Sent: Friday, September 20, 2002 6:47 AM Subject: RE: Firewall Software
> Can we keep this on topic! > > I am looking for a software solution, not hardware. :) > > Personal recommendations of Software Firewalls only and those that don't > shut everything down when they first start up as I will lose contact with > the remote server. IMO, software firewalls on servers are nigh on useless. A web server is most likely to be taken conrol of through a port 80 exploit, and if you have any idea what you're doing, you won't be running services listening on any unnecessary ports anyway. You can repel a few DoS attacks (SYN floods, perhaps), but by the time a DoS attack makes it all the way to the server, you can't do much to stem the flood. With a software firewall, once an attacker has control of machine, he also has control of the firewall and probably the firewall's logs. Game over. The inexpensive hardware firewalls out there are getting better and a little (or a lot) faster every day. Check out the ZyWALL 10II. A nice little firewall for under $300. Jim ______________________________________________________________________ Get the mailserver that powers this list at http://www.coolfusion.com ------------------------------------------------------------------------------ To unsubscribe, send a message to [EMAIL PROTECTED] with 'unsubscribe' in the body or visit the list page at www.houseoffusion.com
