>> I'm a SCO UNIX system administrator just getting into the basics
>> of building a firewall on our net...I downloaded TIS' Firewall
>> Toolkit, but haven't heard if anyone has used this successfully on the
>> SCO UNIX ODT 3.0 platform as yet? Do you have any recommendations?
>When I talked with the security people at SCO, they said there was no
>options for turning off source routing. So, unless you have the src code
>to SCO or they have added that option within the last month or so,
>making a SCO system a firewall is like adding a fence around your network
>with the gate wide open.
In the next release of SCO ODT ("Everest"), there is an option
to disable nonlocal source routes. Pat, check out the space.c
file for IP when you get the Beta release. I think that nonlocal
source routes will be disabled by default.