Re: Security: FreeBSD vs OpenBSD

["Darren Spruell" <Darren_Spruell@sento.com>]

why not? "firewall" suggests more of a perimeter protection.  packet
filtering can be implemented easily on internal servers or other
important machines.. and still have benefit internally.  But one should
also consider that if these machines are within the perimeter, they can
be put into a DMZ and still be governed reasonably well from the same
firewall.

--
Darren Spruell
Sento IS Dep't
darren_spruell@sento.com <mailto:darren_spruell@sento.com> 


-----Original Message-----
From: Martin Marconcini [mailto:megadeth@millic.com.ar]
Sent: Monday, February 04, 2002 11:29 AM
To: Generic Player
Cc: David S.; misc@openbsd.org; Chris
Subject: Re: Security: FreeBSD vs OpenBSD


Hello Generic,

Monday, February 04, 2002, 2:21:43 PM, you wrote:


GP> network with no filtering of any kind to interfere.  A firewall is
just
GP> one minor piece to the puzzle, you can't seriously expect that you
just
GP> slap in a firewall and tada, you're network is secure.

You are suggesting that we should create Mini-Firewalls on every box?
(that is, by configuring pf/ipf or whatever?)




-- 
Best regards,
 Martin                            mailto:megadeth@millic.com.ar
" Put your hand on a hot stove for a minute, and it seems like an hour.
Sit with a pretty girl for an hour and it seems like a minute... 
that's relativity! " Albert Einstein.