On Mon, 15 Apr 2002, Saso Virag wrote: > >Yes, but you can't rip everything out if you expect to run a commercial > >firewall's GUI. > > Sure you can. It's a Good_Thing(sm). > > > Solaris wants rpcbind for the X font server for instance. > >Ripping listening sockets out of CDE *sucks* and is non-trivial. > > That's true, but people really _should_ know better than running Xserver > and *gasp* CDE X manager on the firewall box. Operative word being > *should*. :-) >
unfortunantly the alturnative seems to be to put a microsoft windows box out on the network to be a management station, at least with X on the firewall the firewall attempts to prevent access from the world, if you use a microsoft box usually it's not hardened (you may be able to turn it off when not needed, unless it also deals with your logs) David Lang _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
