Re: favorite security software
# [EMAIL PROTECTED] / 2002-10-19 02:02:10 +0200: > Saturday, October 19, 2002, 1:40:42 AM, you wrote: > RM> do people have any favorite security software that they always run in addition >to ipfw or ipfilter? > > My favorite firewall is ipfilter. Mainly because it doesn't run in > userland like ipfw does. hrmm, this is nonsense. ipfw sits in kernel of course. what runs in userland is its companion, natd(8). if you don't nat you don't need to care. if you don't nat on a very slow/loaded box, that is. as has been said on the list, the fact that natd is a userland process has its ups as well: a bug in natd won't panic your gateway (i gathered from the lists that there used to be a bug in ipnat that caused just that). n.b.: i'm an ipfilter user. -- If you cc me or take the list(s) out completely I'll most likely ignore your message. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
Re: favorite security software
in message <[EMAIL PROTECTED]>, wrote Alex thusly... > > I beleave it [ipfilter] also has a bit more options for a normal > firewall but no extra's like ipfw does. The later reason is way i > also run ipfw. I use it for the traffic shaping and traffic policy > only. i have been faithful to ipfilter for about last 2-4 years, mainly due to its stateful inspection. now ipfw does have it too. one thing that's most lustful going for ipfw is the new/improved syntax for specifying ports & such. -- To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
Re: favorite security software
on public server i run: portsentry tripwire swatch arpwatch - Original Message - From: "Redmond Militante" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, October 18, 2002 7:40 PM Subject: favorite security software To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
Re: favorite security software
Saturday, October 19, 2002, 1:40:42 AM, you wrote: RM> do people have any favorite security software that they always run in addition to ipfw or ipfilter? Dear Redmond, My favorite firewall is ipfilter. Mainly because it doesn't run in userland like ipfw does. This makes it a bit faster because it doesn't have the overhead a normal userland program has. I beleave it also has a bit more options for a normal firewall but no extra's like ipfw does. The later reason is way i also run ipfw. I use it for the traffic shaping and traffic policy only. -- Best regards, Alex The FreeBSD handbook http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/index.html To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
favorite security software
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 hi just wanted to get people's opinions - i'm probably going to configure ipfw on a new box. this box is a combo web/ftp/mysql box. do people have any favorite security software that they always run in addition to ipfw or ipfilter? thanks for any feedback you may have redmond -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (FreeBSD) iD8DBQE9sJv2FNjun16SvHYRAleLAJ462zDoYIsHaaK8XEd88WCsd2ThIQCdHltt SbbvP0NcNGQdgapf4wn5pRo= =4g9N -END PGP SIGNATURE- msg05679/pgp0.pgp Description: PGP signature