Gift-Wrapped Security

Oct. 8, 2017 1 comment ADMIN Magazine Pen Testing & Audits firewall

Many years ago I remember somebody mentioning that rather than running a firewall, they were just using TCP Wrappers. This piqued my interest because all my customers talked about when it came to Internet security was how much their proprietary firewall had cost them or which bundled features with their firewall guaranteed greater security for their servers. Admittedly, it goes against the grain – and more than just a little – to totally dismiss firewalls, but you might be surprised to hear that I’ve successfully run several sets of production servers for many years with the absence of a firewall entirely. If you’re wondering what I mean by “successfully,” I mean without the servers being compromised. My brief addendum to the last two sentences has to be that running Netfilter – or, to most peoples minds, the tool that controls Netfilter, iptables – on a Linux server brings a great number of benefits, such as automatically dropping illegitimately formed traffic that might pose a thr...

ariadnalunguco 7 months, 1 week ago

Things seem so easy when explained here, but in fact they are quite sophisticated and they require attention and complete professionalism when dealing with them. This is really serious stuff.