On Thu, 3 Jan 2002 19:58:20 -0500 Joel Hammer <[EMAIL PROTECTED]> spewed into the bitstream:
> I still use them, so, they're not entirely dead. You can configure tcpd > wrappers with your firewall. Since you can spawn scripts with tcpd > wrappers when certain events occur, you can have very tight control over > security. tcp wrappers is good, but limited -- mostly by what it can watch (TCP, but not UDP) connections. iptables is maturing rapidly and quite well. Some things you'll find in the `make patch-o-matic` target include: port scan detection, NETLINK target support, strings support (yes, search for strings inside packets -- preferably, you'll only use this with connection tracking, which reassembles packets first), much more. > > I think that changing technologies/software everytime you > want a new feature is overkill. I believe it was the Bard who penned: I believe it's great we have choices. > > "Do not dull thy palm with the entertainment of each new hatch'd, > unfledg'd courage." > > Joel > > > Yes but.... ipchains is a dead issue. > _______________________________________________ > Linux-users mailing list > Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 _______________________________________________ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
