On Mon, Oct 23, 2000 at 11:39:16AM +1000, David Kempe wrote:
> SLUG is having a Network Security Fest/Forum!
>
> If anyone has any suggestions as what they would like out of a linux
> security forum/fest please reply as well - all suggestions seriously
> considered :-)
I think filtering firewalls are well documented in linux, but security
is based on ip addresses, doesn't work to well with DHCP, etc.
I'd be interested in hearing more about application proxy servers with
authentication, in particular I'd like to know more about proxying X
with authentication.
I'm discovering its not such an easy thing to do.
So far I've looked at TIS firewall toolkit, but its not ideal, out of the
box you have to use xhost to allow the firewall to connect to your X terminal,
telnet to the firewall, login to the firewall, start the X proxy, telnet to
the remote box, login to the remote box, set your display then start your X
applications. Its clunky and not very secure (xhost and telnet), which
defeats the whole purpose of putting a firewall in.
Any suggestions?
The alternative is a commercial firewall, which some people are pushing for
anyway. I'm hoping to get something up and running using linux, then let
them decide if they still want to go with commercial firewall, or stay with
linux.
--
chesty
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
