Marty was once rumoured to have said:
> > On a similar note, once I've got netfilter worked out, I'd happily run
> > a weekend 'introduction to firewalling' - I just haven't had the time
> > lately to look at netfilter.
> i had a read of rusty's docs on it the other night
> (http://netfilter.kernelnotes.org/unreliable-guides/) and he is very
> good at providing an overview of the situation and a nice ipchains
> -> netfilter migration guide...
Migrating like that is a bit insane IMO [you wouldn't want to do a
straight 1 to 1 migration, otherwise you don't gain any of netfilter's
real benefits] - and that really wouldn't be the point of me giving
such a talk - there is theory behind all this madness, as well as some
general good/bads. [one such bad which is far too popular is blocking
all ICMP. Can we *PLEASE* stop doing that?]
> however, be warned about his sense of humour! you will never have so
> much fun reading docs... :)
Given I've known rusty for a while now... and I've seen both of his
Completely Unreliable guide to Kernel Hacking talks, and his LCA
`keynote' - I know what his humour is like :)
--
--==============================================--
Crossfire | This email was brought to you
[EMAIL PROTECTED] | on 100% Recycled Electrons
--==============================================--
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
