Great Circle Associates Firewalls
(March 1998) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Linux firewall question.
From: Dave Wreski <dave @ nic . com>
Date: Wed, 11 Mar 1998 22:03:17 -0500 (EST)
To: Bret McDanel <bret @ rehost . com>
Cc: firewalls @ GreatCircle . COM, speed @ barney . iamerica . net
In-reply-to: <199803091806 . NAA12947 @ rehost . com> 
On 09-Mar-98 Bret McDanel wrote:
> I am not sure, but I think one of the big reasons that some people say to
> stay away from loadable modules is that assuming someone breaks into your
> system, they could reconfigure the modules, and add new ones or replace
> existing ones without having to take the system down and rebuild the whole
> kernel...  

Umm.. If someone breaks into your system, you've got bigger problems to worry
about than someone loading a module.

Dave
Follow-Ups:
References:
Indexed By Date Previous: strange port 808 and 13223 activity.
From: Sami Yousif <syousif @ iname . com>
Next: Re: Linux firewall question.
From: Dave Wreski <dave @ nic . com>
Indexed By Thread Previous: Re: Linux firewall question.
From: Bret McDanel <bret @ rehost . com>
Next: Re: Linux firewall question.
From: Helmut Springer <delta @ RUS . Uni-Stuttgart . DE>
Google
 
Search Internet Search www.greatcircle.com