On Monday, April 15, 2002, at 06:18 , Tyler Punky Smith wrote: > I believe in making your computer secure instead of hiding it behind > a firewall. There's no magic firewall that allows access from good > guys but not from crackers, so when you set up that firewall, you > have to just pick a large range of IPs to deny from, and if you're > denying from all those IPs, how useful is your server? If the > computer is not a server, why are there any ports open in the first > place?
I think pickle was right when he said (something like) "both situations are good." I have a machine sitting "right out there" -- not behind any firewall. It has been secured by disabling all unnecessary services. However, I also have several machines at home behind a Linksys firewall. Those machines (let's take my NeXTcube and my OS X box as examples) I know much less about, regarding administration. I have a few ports pointing to the G4 Cube and a few to the NeXT. FTP is not enabled from the outside -- however, I still find it much faster than using scp internally. So, FTP is open inside. But FTP is so insecure, I never use it to the outside world -- so that's where the firewall is nice. Sure I could use TCP wrappers, but then a foreigner is still connecting to my machine. Eagle -- Compact Macs is sponsored by <http://lowendmac.com/> and... SPECIAL LIST PRICES - Replacement Apple CDROMs from $19.99, MacOS 8.5 CD $79.99 PPC 5400/200Mhz 16/1.6GB/CD/ENET/L2 $119, 5+ for $99 <mailto:[EMAIL PROTECTED]> Support Low End Mac <http://lowendmac.com/lists/support.html> Compact Macs list info: <http://lowendmac.com/lists/compact.shtml> The FAQ: <http://macfaq.org/> Send list messages to: <mailto:[EMAIL PROTECTED]> To unsubscribe, email: <mailto:[EMAIL PROTECTED]> For digest mode, email: <mailto:[EMAIL PROTECTED]> Subscription questions: <mailto:[EMAIL PROTECTED]> Archive:<http://www.mail-archive.com/compact.macs%40mail.maclaunch.com/> Using a Mac? Free email & more at Applelinks! http://www.applelinks.com
