-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > So...if you turn off all the services that you don't > need, and you only have ports 80 (and 443, maybe) > open, then what would be the point of the firewall?
Well, if you run something like BlackIce or another active IDS oriented product (like snort with IPTABLES) you can watch what IS allowed, and make sure, based on signatures/rules, that nothing malicious is being attempted. This is what a server firewall should do - active intrusion detection. Daniel R. Miessler -----BEGIN PGP SIGNATURE----- Version: PGP 8.0 iQA/AwUBPhpvUVJwf7WiYT5vEQI1FACg86ejw4J8AM4kUg7vPWQvX5pJkqgAoI7I mO2o3XKQcc7fUxLnAmwSEoW2 =ouTK -----END PGP SIGNATURE-----
