We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
It's one thing to rush an application to market without thinking about security. It's another to rush a security application to market. But that's what's happened with several personal firewalls--a product category that was a virtual nonentity . . .
For a couple of weeks now some of you may have been seeing what looks like a ping scan from many hosts to your nameservers. Joe Stewert gave a very good explination of why this is happening in a recent . . .
Despite its relatively secure status when compared to some other operating systems, Linux is still somewhat problematic to deal with, especially as the userbase drifts more and more from experienced technical hands to hobbyists and less experienced users out to try . . .
Here's a pretty good guide on the most common things you can do to block many of the most commonly exploitable services from entering/leaving your network. "The following 11 sections for this assignment will be demonstrated using a Redhat Linux 6.1 . . .
In this article I cover some of the design decisions that have to be made before creating a firewall, from architecture to various decisions that should be made. A firewall is a device that separates and protects your network, in most . . .
Firewalls are not new; but high-performance firewalls are. Historically, firewalls used software to examine every packet and then make the decision to forward or drop the packet. This made them slow. When administrators placed them in line with low-speed WAN . . .
This chapter describes a variety of ways to put firewall components together, and discusses their advantages and disadvantages. We'll tell you what some appropriate uses are for each architecture. The simplest firewall architectures have a single object that acts as . . .
Lewis talked at length about SecureWorks' latest offering, iSensor. A Linux-based stateless firewall product has a significant twist: remote monitoring done at the SecureWorks data center in Atlanta. SecureWorks has done a considerable amount of work in real-time intrusion detection, adding . . .
Ipchains is a packet-filtering firewall package. You can findan RPM of Ipchains in RedHat/RPMS in the latest PC Quest RedHat CD. First youhave to check whether the Linux kernel supports Ipchains. For this, look for afile named ip_fwchains in /proc/net. If . . .
In this three-part series, you'll learn to install and configure a Linux server and firewall. Part 1 covered selecting a secure Linux distribution and installing it. Part 2 covered the reassignment of services provided by the old firewall which the authors . . .
Squid is a proxy caching server for HTTP/FTP requests. It caches data off the net on your local network. So the next time the same data is being accessed, whether it is html or a gif, it gets served up . . .
I have encountered several companies with big web businesses who failed to install a single firewall in their premises. After several days and weeks or persuasion, some heeded my advice to install firewalls, while some remained complacent about their 'armoured servers . . .
In this three-part series, you'll learn to install and configure a Linux server and firewall. Part 1 covered the selection and installation of a secure Linux distribution. Part 2 covers the reassignment of the services provided by the old firewall the . . .
In Part 2 of our series on firewalls, another big name in software goes Linux. Check Point FireWall-1 helps Linux adapt to the critical area of securing enterprises. Also, some more firewalls for those who want to pay for their security. . . .
This document, written in 1996, does an excellent job of describing the basics of the firewall, including proxy and bastion hosts, building a firewall, placement, and references to more information on building firewalls.
The following problem (as discussed in this paper) has not yet been identified. Certain firewalls today, will not authenticate the validity of certain protocol fields, within the packet they are processing. The risk is exposure of information. What kind of information . . .
In this three-part series, you will learn to install and configure a Linux server and firewall. Part 1 covers the selection and installation of a secure Linux distribution. Part 2 will cover the reassignment of services provided by the old firewall . . .
A relationship with the National Security Agency has netted Marconi Communications the technology to produce a firewall that is said to run at OC-12 speeds (622 Mbits/second) and to be undetectable to potential intruders. The technology, licensed from the NSA and . . .
In this three-part series, Pawel Leszek looks at firewall products for Linux. Part 1 is all about open source solutions. Part 2 will cover commercial products, while Part 3 will take a look at firewall appliances. The standard firewalling support in . . .
The Stormix Firewall box contains one CD that includes a full copy of Storm Linux 2000 Starter Edition, Storm Firewall, and Debian GNU/Linux packages. Also included are a boot and a driver disk, a product registration sticker, and two manuals: the Storm Linux 2000 Installation Guide and the Storm Firewall User Guide. . . .
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
