On Fri, 6 Dec 1996 riordan @
> On Wed, 4 Dec 1996, Russ, making several good points, wrote:
> > If you are going to use NT as a Firewall platform, there should be only
> > one reason you would do that. You want to integrate your Firewall into
> > your existing NT environment (for any of a number of reasons).
> I would generally think of that as an argument against an NT firewall:
> You have two doors each of which a bad guy must pass through to get to
> your goods. Do you really want to use the same key for both doors?
I concur. E.g., in a two-level firewall (app gateway protected by a
packet filter), OS diversity is a nice touch for exactly this reason. (We
use FreeBSD and Linux for exactly that reason, but I think I've already
mentioned that. 8^)
Todd Graham Lewis Linux! Core Engineering
Mindspring Enterprises tlewis @
com (800) 719 4664, x2804