Iptables initialization

ken_i_m at elegantinnovations.net ken_i_m at elegantinnovations.net
Thu Feb 12 21:48:26 PST 2004


On Thu, Feb 12, 2004 at 07:32:11PM -0500, Archaic (archaic at indy.rr.com) wrote:
> Just a note; I also prefer specifically denying certain known weaknesses
> as well, even if they would be denied by default. The reason for this is
> in case I make some bonhead mistake when allowing something, it will
> still be denied.

This may work for a system where you are the sole admin but it does not 
scale.  I work with a sysadmin who does as you do.  The print out of the 
ruleset goes for pages.  Fortunately, the task of rewriting them has been 
given to me.  Sanity will reign.
-- 
I think, therefore, ken_i_m
Chief Gadgeteer, Elegant Innovations
Founder, Bozeman Linux Users Group
(406) 581-0495



More information about the hlfs-dev mailing list