You may be surprised how easy it is to install. If you follow the install doc, there is only a small number of choices. don't be scared of using the keyboard.
You are comparing apples and oranges. OpenBSD is an operating system, IPCop is a firewall solution. You could argue that you need a web server to be running on IPCop, which is one more thing that your OpenBSD setup wouldn't need. When it comes down to it, IPCop had no external ports open, unless you configure it in such a way, so it ain't gonna get hacked from the internet. My 2 cents, OpenBSD would be better, as it has a bunch of trained monkeys.
I've done maybe 15 builds from scratch to try and get it working, and never had any luck. First 2 smoothwalls, works like a charm. But your idea is right, as soon as i get this working on another distro, i'll be dropping smoothwall and all it ipchains guified goodness faster than you can say
.sig
Its hard to draw the line between getting the job done and keeping people happy sometimes. But it does seem a waste to shun people that may help improve the product. Reminds me of theo and bsd, he wasn't such a nice guy to a lot of people, but at least he could justify his views on his work. In comparison the smoothwall people seem to think it doesn't need justifacation, they think their way is allways right, which isn't in the opensource spirit. I do still think the reporter was trying to pick a fight, but thats another issue.
I read your link, and think the guy is trying to pick fights. Not the smoothwall team, the reporter.
Seems to be a lot of people trying to stitch up smoothwall at the mo, you don't support IPCop by chance do you???
I didn't see any real display of security concerns, just a guy who wants GCC on a firewall, which I to think is un necessary, it just bloats the install. jsu my 2c
4comments and the sites already ./ed
on
Apple PDA?
·
· Score: 0
well, i didn't expect much else
can someone offer a mirror of the video clips?
and on the topic of what it will sync to - i think it would be interesting if apple bought out there own software - syncing passwords with the built in key chain would be nice - i do hate having to reuse the same passwords everywhere just to make their management easier
I think the main task for the kernel maintainer is... maintaining the kernel. I assume there must be a fair few people out there who understand the changes. maybe you could start a changelog answer project? I agree this is missing, but I also think that there are other ways to solve the problem
It seems a bit strange that a goverment agency, on the subject of combining all americans under one roof, would require that they all be running ms word to fully understand what they have to say - doesn't it?
I like the fact that apple isn't all big and powerfull, the way that mirosoft is and redhat is heading. its got that smaller thing going for it, not just another _________!!
Beacuse it is possible to change your MAC address there is really no securuty in it, a bit like an IP address. It is also possible to sniff MAC addresses, even off encrypted traffic, so it would be easy to get a valid address.
My only gripe with osx is that most apps that i try to build from source don't build. I think this is important to ppl who move from other nix's as you want to bring over all your favorite tools and get everything under one roof. granted if you know enough c or can figure out the whole build process the problems may not be that bad but that is not an option all the time. i put yellow dog linux on my laptop to try get around the problem but the same problem still exists because of the powerpc processor not being tested for everything. The holy grail for osx in my books is having a full bsd ports tree working, no more hunting around for guides that end up breaking other parts of the system.
I wonder if IP v6 will have an affect on all the script kiddies and black hats out there who need to sweep ip ranges to find targets. At present our class C in lodon gets sweeped about 5 times a day, and usually for a single port, having to scan a/48 for every company/ house would take a long time, and even then the marority would be for smaller busineses and such that would have a few devices. I believe this would discourage many as the chance of finding a target would be almost impossible. this added to the fact of once the intrusion system picks up a scan, there would be a lot of time to act on it.
Now if only they would introduce 128 bit port numbers
Slashdot Mirror
You may be surprised how easy it is to install. If you follow the install doc, there is only a small number of choices. don't be scared of using the keyboard.
um, its been there for over a year.
why not just not log in??
can it be true?
Anyone know if they plan to do an openbsd port
You are comparing apples and oranges. OpenBSD is an operating system, IPCop is a firewall solution. You could argue that you need a web server to be running on IPCop, which is one more thing that your OpenBSD setup wouldn't need. When it comes down to it, IPCop had no external ports open, unless you configure it in such a way, so it ain't gonna get hacked from the internet. My 2 cents, OpenBSD would be better, as it has a bunch of trained monkeys.
Switched networks are generally no more secure than hubbed ones. Implementing mac layer security in the switch will help though.
In two words, usb adsl.
I've done maybe 15 builds from scratch to try and get it working, and never had any luck. First 2 smoothwalls, works like a charm. But your idea is right, as soon as i get this working on another distro, i'll be dropping smoothwall and all it ipchains guified goodness faster than you can say
.sig
Its hard to draw the line between getting the job done and keeping people happy sometimes. But it does seem a waste to shun people that may help improve the product. Reminds me of theo and bsd, he wasn't such a nice guy to a lot of people, but at least he could justify his views on his work. In comparison the smoothwall people seem to think it doesn't need justifacation, they think their way is allways right, which isn't in the opensource spirit. I do still think the reporter was trying to pick a fight, but thats another issue.
I read your link, and think the guy is trying to pick fights. Not the smoothwall team, the reporter.
Seems to be a lot of people trying to stitch up smoothwall at the mo, you don't support IPCop by chance do you???
I didn't see any real display of security concerns, just a guy who wants GCC on a firewall, which I to think is un necessary, it just bloats the install. jsu my 2c
well, i didn't expect much else
can someone offer a mirror of the video clips?
and on the topic of what it will sync to - i think it would be interesting if apple bought out there own software - syncing passwords with the built in key chain would be nice - i do hate having to reuse the same passwords everywhere just to make their management easier
I think the main task for the kernel maintainer is... maintaining the kernel. I assume there must be a fair few people out there who understand the changes. maybe you could start a changelog answer project? I agree this is missing, but I also think that there are other ways to solve the problem
It seems a bit strange that a goverment agency, on the subject of combining all americans under one roof, would require that they all be running ms word to fully understand what they have to say - doesn't it?
I like the fact that apple isn't all big and powerfull, the way that mirosoft is and redhat is heading. its got that smaller thing going for it, not just another _________!!
sure the clients could be on osx but the server would still be m$, which is what the poster wants.
Beacuse it is possible to change your MAC address there is really no securuty in it, a bit like an IP address. It is also possible to sniff MAC addresses, even off encrypted traffic, so it would be easy to get a valid address.
My only gripe with osx is that most apps that i try to build from source don't build. I think this is important to ppl who move from other nix's as you want to bring over all your favorite tools and get everything under one roof. granted if you know enough c or can figure out the whole build process the problems may not be that bad but that is not an option all the time. i put yellow dog linux on my laptop to try get around the problem but the same problem still exists because of the powerpc processor not being tested for everything. The holy grail for osx in my books is having a full bsd ports tree working, no more hunting around for guides that end up breaking other parts of the system.
I wonder if IP v6 will have an affect on all the script kiddies and black hats out there who need to sweep ip ranges to find targets. At present our class C in lodon gets sweeped about 5 times a day, and usually for a single port, having to scan a /48 for every company/ house would take a long time, and even then the marority would be for smaller busineses and such that would have a few devices. I believe this would discourage many as the chance of finding a target would be almost impossible. this added to the fact of once the intrusion system picks up a scan, there would be a lot of time to act on it.
Now if only they would introduce 128 bit port numbers
so i guess i've gotta increase the power of my fan outside the shower...
surely the grand plan is to get some m$ ware onto linux to make it crash more often... if you can't beat them, make them crash as much as us. easy