Slashdot Mirror

← Back to Stories (view on slashdot.org)

Run Your Firewall Halted for Extra Security

Posted by michael on Friday February 8, 2002 @04:27AM from the neat-trick dept.

n8willis writes: "There's a great article over at the SysAdmin magazine site that presents a unique approach to improving network security: run your firewall in a halted state. This means runlevel 0; no processes running and no disks mounted, but with packet filtering still on. The author heard a rumor of this capability in the 2.0 series kernels, and he's managed to get it working in 2.2 as well."

3 of 390 comments (clear)

Min score:

Reason:

Sort:

who would use a linux firewall? by zendeath · 2002-02-08 05:01 · Score: 0, Flamebait

when there are better solutions out there?

--
ceci n'est pas une signature
Wait a sec... by timdorr · 2002-02-08 06:45 · Score: 1, Flamebait

Isn't that kind of like Windows firewall?

I mean, they're always freezing to a halted state too

--
Tim Dorr
Owner/Manger
A Small Orange
Re:Cheap rackmount solutions? by Empty+Sands · 2002-02-08 09:01 · Score: 0, Flamebait

No, but that doesn't help you if your rule set is crap and your internal machines get hacked.

Furthermore, that doesn't help you if internal client machines are lacking the latest Microsoft patch and some user downloades an active trojan.

Security is a state of mind, but the state of some hardware. The only ultimate security is no connection.