[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Create a canned 'Firewall Build' or RFHH

To: misc@openbsd.org
Subject: Re: Create a canned 'Firewall Build' or RFHH
From: "John R. S. Mascio" <mascio@ryu.com>
Date: Mon, 25 Feb 2002 16:33:50 -0600
Organization: Ryu Enterprises
References: <3C7AA743.2030107@ryu.com> <54895.216.150.207.237.1014672264.squirrel@mail.wellogix.com>
User-Agent: Mozilla/5.0 (Windows; U; Win98; en-US; rv:0.9.2) Gecko/20010726 Netscape6/6.1

A good canned firewall that addresses a specific need is a good thing. 
 A canned firewall to address every possible need is impossible.  In my 
case, I'm looking at having a good basic, even if somewhat restrictive 
firewall to handle medical practices in the US, but with the ability to 
add "options" according to other business needs of the practice.

With 1,000's of practices in Dallas, TX alone, there is not enough 
System Managers or Security Experts to go around.  If a medical practice 
has to develop the expertise to build a firewall from scratch, it will 
never happen.  If those of us in the field can build a good tool for 
them to use, with some minimal time/input from us, we have done 
something beneficial.  Much like the medical realm has done with glucose 
meters for diabetics, automated blood pressure cuffs, non-invasive 
cholesterol testing (soon), and other benefits.  Do these tools replace 
the medical profession?  Hardly, but it allow the individual to address 
some of the basic health issues with out an M.D.

As a computer professional, I am appalled at the lack of security of 
most businesses, medical practices or even the home user.  We have the 
knowledge to help.  If we do not, then our problems are magnified as 
well.  Can you say Morris worm?  (UNIX!)  Nimda?  Code Red?  ...  If we 
don't help come up with sane ways of combating the problems, we are part 
of the problem.

But, if any of you would  rather trade insults and feel superior because 
you are an OpenBSD guru, or becoming one.  Feel free to insult me, who 
is not.  yet...  I'm going to try to fix an identifed problem. I'll 
share with those who will share and help address the problem, and not 
share with those who don't.  

I decided to go with OpenBSD because of it's reputation for keeping 
security in mind. So far, I've seen the OpenBSD community would rather 
keep to themselves and require everyone to have to be an expert in 
OpenBSD to use it, then share their knowledge to create tools for those 
who know less but have just as strong a need for security.  If that is 
the case, I'll find a different place to solve this problem...

If you want to flame me, see my email address below.

I'll get off my soapbox now...

JRSM

-- 
      _  | John Raymond Stone Mascio 
  _|_|_) | mascio@ryu.com            
 (_|_|   | 214.725.7518
         | 972.240.5040
-----------------------------------------------------------------

Follow-Ups:
- Re: Create a canned 'Firewall Build' or RFHH
  - From: Theo de Raadt <deraadt@cvs.openbsd.org>
- Re: Create a canned 'Firewall Build' or RFHH
  - From: "Angus Scott-Fleming" <angussf@geoapps.com>
- Re: Create a canned 'Firewall Build' or RFHH
  - From: Ben Goren <ben@trumpetpower.com>

References:
- Re: Create a canned "Firewall Build" or RFHH
  - From: "John R. S. Mascio" <mascio@ryu.com>
- Re: Create a canned 'Firewall Build' or RFHH
  - From: "Don Cooley" <dcooley@wellogix.com>

Prev by Date: Re: What's this?
Next by Date: Re: Create a canned 'Firewall Build' or RFHH
Prev by thread: Re: Create a canned 'Firewall Build' or RFHH
Next by thread: Re: Create a canned 'Firewall Build' or RFHH
Index(es):
- Date
- Thread