Hosting Provided By

Re: About Operating Systems security

From: <salgak(at)speakeasy.net>
Date: Wed May 28 2003 - 13:34:58 EDT

Well, it's generally accepted practice that a firewall should be the only application running on the firewall box: adding a webserver and database opens up two additional areas for a hacker to exploit and gain root access.

Databases are exceptionally problematical: remote procedure calls are the LAST thing you want on a firewall.

Keep your webserver and database server BEHIND the firewall. If you can do no other solution, get a hardware firewall unit and run your web and DB on a separate box.

The nice thing about using Open Source software, and especially the many Linux variants, is that it WILL run just fine on older equipment that might otherwise be discarded or surplused. An old desktop box will run a Linux firewall fine. You'll get better protection from exploits AND save the company some cash. . .

Received on Thu May 29 13:36:44 2003

This message: [ Message body ]
Next message: John Canty: "RE: Distressing, possibly life threatening emails from free accounts (yahoo, hotmail"
Previous message: Jay Woody: "Re: Distressing, possibly life threatening emails from free accounts (yahoo, hotmail"
Maybe in reply to: yannick'san: "About Operating Systems security"
In reply to Roger Bou-Aoun: "RE: Evaluating the security level of a firewall"
Next in thread: yannick'san: "Re: About Operating Systems security"
Reply: yannick'san: "Re: About Operating Systems security"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:04:36 EDT