A few comments...
I have installed the DOS-based firewall at a couple of sites. I have one
running myself for my own internet site. I like the idea of DOS being the
front end (NOT windoz...) since it completely controls the box. I mean,
when was the last time you logged more than 1 user into a DOS machine.
Also, to go along with some of the other comments/questions regarding
this box, it does NOT have an IP stack on it!!!! That removes much of
the vulnerability. In fact, I would say the best way to describe it is that
is is as transparent as a bridge but has all the filtering and logging of a
firewall.
At any rate, if you remove access to the operating system, other than
the console itself, you remove a lot of headaches. I guess it just means you
have to control your computer room now. Sheesh, these computer security
problems just never end, do they???
*grin*
Rich
On Thu, 10 Aug 1995 15:06:24 -0500 Rick Smith wrote:
>Regarding the exchange:
>
>>> There's an outfit that builds a firewall running on DOS.
>
>>Any capacity or speed specs on this?
>
>Would it be too much to ask something like, "What kinds of attacks
>is this thing supposed to block, and what does it let through?"
>
>Like, "It's almost as fast at forwarding application level attacks as
>a low end filtering router."
>
>Rick.
>smith @
sctc .
com secure computing corporation
>
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
** Remember -- Life is NOT a dress rehearsal!
(nor is it a small furry animal with funny feet and floppy ears...)
|
|
