Linux Today: Linux News On Internet Time.

TheLinuxGurus.org: Building Linux and OpenBSD Firewalls [Book Review]

Nov 18, 2000, 12:06 (0 Talkback[s])

[ Thanks to David Culp for this link. ]

"Just because you're paranoid does not mean they are not really after you. It is an old saying but one that applies equally well to network security, just because you have not been attacked does not mean someone is not trying. The subject of firewalls used to be the domain of network security administrators running large networks connected to the Internet. Today, with the availability of dedicated, high-speed Internet access for the home user, the subject of firewalls should be important to nearly anyone connected to the net. In fact, if you are connecting to the Internet via a DSL or cable modem then a firewall should not be an option for you, you need one."

"A firewall is essentially a packet filter, it lets packets into and out of your network based on rules set by you. A firewall is not and should not be the only component in securing a network or single machine. Other items such as shutting down unnecessary services, intrusion detection, keeping up with patches, logging and other techniques should be used and all are discussed in the book. In fact, the book serves not only as a good introductory text on firewalls, but also as an introductory network security text."

"All in all a terrific resource for building Linux (or OpenBSD) firewalls. My only problem with the book is that I personally believe that a firewall should be an even more minimal machine than even the authors think. For example, you do not really need a hard drive or CD-ROM in a firewall, the firewall should be self contained and boot off of a floppy. However, that is probably beyond the scope of the book. If you're looking to set up a firewall using Linux or OpenBSD then this book may fit your needs."

Complete Story

Related Stories: