I need (at least initially) tools installed that I can aceess from the firewall
machine. Things like a compiler to compile TIS. I could remove these when I
bring up the interface to the outside, but I wondered if anybody had an idea
about some measure that was still secure but didn't require this.
I thought of a filesystem mounted locally on an encrypted block device,
requiring a password from the console. Any other suggestions? Is this itself a
I rejected the idea of mounting them over NFS from a machine inside the
Firewall, believing this to be still less secure. Any nay-sayers?