On Tue, 21 Mar 2000, Paul Lussier wrote:
>
> In a message dated: Tue, 21 Mar 2000 07:05:28 EST
> Rich Payne said:
>
> >Let me put it this way...unless you have very deep pockets the limiting
> >factor will be your connection to the internet, not your routing box. Last
> >I heard a 486 could confortable route a T1 line w/o any trouble.
>
> Absolutely, though, I probably wouldn't run a DHCP/BOOTP server on the router/
> firewall system. It can definitely be done and with little impact upon the
> performance of the router/firewall box, but for security reasons, I tend to
> not run anything I don't have to on these types of systems.
Yes, Paul raises a good point here that I should have touched upon. Do not
run anything on that system that it doesn't need, this includes:
Any of the r programs (rsh, rexec, etc....) (edit your /etc/ietd.conf)
Anything to do with NFS, NIS
Telnet, use ssh instead
Don't run anon-ftp unless you really need it
X
imap,pop, even sendmail if you don't need it
DHCP/BOOTP
SWAT (Samba config), LinuxConf
talk etc.....
--rdp
Rich Payne
[EMAIL PROTECTED] www.alphalinux.org
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
