At 02:00 PM 5/22/2002 -0400, you wrote: >Part of what makes GNAT Box such an excellent firewall is that it >doesn't install on top of an OS that's trying to provide services >that the filters are trying to deny. This gives you two layers >of security for the firewall itself -- even if you get past the >filters, there's nothing that wants to talk to you.
The gnatbox has a DNS server, even though there have been various DNS exploits in the past. The DNS server is available, but not activated by default. The DNS server seems to be a very slimmed down version designed to provide only the most necessary services for operation. Why can't the same methodology be used for something link SNMP? Rob Genovesi [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected]
