Firewalls: Re: Linux as a Firewall Platform

Firewalls
(December 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Linux as a Firewall Platform
From:	Dave Kinchlea <security @ kinch . ark . com>
Date:	Tue, 17 Dec 1996 09:26:58 -0800 (PST)
To:	Todd Graham Lewis <lists @ reflections . mindspring . com>
Cc:	Arne Steinkamm <arne @ Steinkamm . COM>, Firewalls Mailing List <firewalls @ GreatCircle . COM>
In-reply-to:	<Pine . LNX . 3 . 95 . 961217082045 . 250K-100000 @ reflections . mindspring . com>

On Tue, 17 Dec 1996, Todd Graham Lewis wrote:

> On Mon, 16 Dec 1996, Arne Steinkamm wrote:
> 
> > On a linux machine each hacker from the net, gained root privs. can change
> > it.
> 
> If a hacker gains root on your firewall, haven't you, uhh, already lost?

Perhaps I am missing something here but I was under the impression that
this is *exactly* what the immutable/append only bits are for -- just in
case someone does gain root. It limits the damage and/or the possibility
of cleaning up after themselves. Is this not so? If not, what ARE they
good for? 

cheers, kinch

References:

Re: Linux as a Firewall Platform
From: Todd Graham Lewis <lists @ reflections . mindspring . com>

Indexed By Date	Previous:	Re: Linux as a Firewall Platform From: Matt Willis <willis @ sctc . com>
Indexed By Date	Next:	Re: Linux as a Firewall Platform From: David Bonn <david @ sealabs . com>
Indexed By Thread	Previous:	Re: Linux as a Firewall Platform From: peter @ baileynm . com (Peter da Silva)
Indexed By Thread	Next:	Re: Linux as a Firewall Platform From: Arne Steinkamm <arne @ Steinkamm . COM>