On Thu, Sep 17, 2009 at 2:51 PM, Kurt Buff <[email protected]> wrote: >>> What a ringing endorsement! Heh. >> >> You left out "... if you're coming from BSD". > > True enough - it just struck me as funny.
Yah, I got it. :) Reminds me of this Dave Barry quote: "Microsoft has a new version out, Windows XP, which according to everybody is the 'most reliable Windows ever'. To me, this is like saying that asparagus is 'the most articulate vegetable ever'." > I like pf, dammit. Yah, from what I've seen, it really is a more elegant solution than Linux's iptables. They both do mostly the same things, but pf makes it easier and cleaner. And that counts. I've seen many front-ends for iptables. They give you a GUI or higher-level language, and handle the more nitty-gritty iptables syntax for you. That's not the same thing, of course, but they at least makes building the rulesets easier. Myself, I had to learn the iptables syntax before those things matured, so I don't have a recommendation, I'm afraid. I've got an overly complicated firewall shell script I can share parts of, though. :) > Well, almost true. I had tried several Linux distros before 2000 and > was dissatisfied by all of them ... Linux has changed a lot since then. Whether it's for the better or worse is subjective. :) I once had occasion to remark, "Linux is becoming more and more like Microsoft Windows all the time." (It wasn't a complement.) Gentoo lets you (re)build everything from source, so it supposedly offers more flexibility in that area, at the cost of time spent customizing things. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
