Firewalls: RE: Firewalls over NT vs. UNIX

Firewalls
(December 1996)

Indexed By Thread: [Previous] [Next]

Subject:	RE: Firewalls over NT vs. UNIX
From:	Todd Graham Lewis <lists @ reflections . mindspring . com>
Date:	Fri, 6 Dec 1996 20:39:55 -0500 (EST)
To:	riordan @ math . umn . edu
Cc:	firewalls @ GreatCircle . COM
In-reply-to:	<199612061658 . KAA07608 @ birch . math . umn . edu>

On Fri, 6 Dec 1996 riordan @
 math .
 umn .
 edu wrote:

> On Wed, 4 Dec 1996, Russ, making several good points, wrote:
> 
> > If you are going to use NT as a Firewall platform, there should be only
> > one reason you would do that. You want to integrate your Firewall into
> > your existing NT environment (for any of a number of reasons). 
> 
> I would generally think of that as an argument against an NT firewall:
> You have two doors each of which a bad guy must pass through to get to
> your goods.  Do you really want to use the same key for both doors?

I concur.  E.g., in a two-level firewall (app gateway protected by a
packet filter), OS diversity is a nice touch for exactly this reason.  (We
use FreeBSD and Linux for exactly that reason, but I think I've already
mentioned that. 8^) 

__
Todd Graham Lewis             Linux!                 Core Engineering
Mindspring Enterprises  tlewis @
 mindspring .
 com   (800) 719 4664, x2804

References:

RE: Firewalls over NT vs. UNIX
From: riordan @ math . umn . edu

Indexed By Date	Previous:	Re: Can You Believe It? From: Darrell Fuhriman <darrell @ grumblesmurf . net>
Indexed By Date	Next:	Re: Can You Believe It? From: chris @ mcc . com (Chris E Creighton)
Indexed By Thread	Previous:	RE: Firewalls over NT vs. UNIX From: riordan @ math . umn . edu
Indexed By Thread	Next:	Re: Cisco PIX From: Matthew Howard <mhoward @ cisco . com>