mobility and firewall
Lance Lassetter
lance at uclinux.info
Fri Jun 3 00:41:24 CDT 2005
On Thu, 2005-06-02 at 17:20 -0700, Matt Zimmerman wrote:
> On Thu, Jun 02, 2005 at 05:16:00PM -0500, Lance Lassetter wrote:
>
> > It seems some sort of *recommended* simple firewall solution should be
> > in place. I.e: for laptop users who are very mobile and connecting to
> > multiple networks that may be infected with some sort of worm/virus.
> >
> > I have yet to find a solution when assigned multiple ip addresses and
> > using multiple connection methods, like ppp0, eth0, ath0, wlan0.
> >
> > Something like Red Hat's lokkit would be nice, however lokkit itself
> > writes entries for the DNS servers.
> >
> > So what I'm asking is a simple firewall solution that can be implemented
> > before multiple interfaces come up.
>
> Here's a link to some previous work on a specification for a firewall for
> Ubuntu:
>
> http://udu.wiki.ubuntu.com/Firewalls
>
> Feel free to send your ideas to the folks who worked on it.
>
> --
> - mdz
>
I think if ubuntu wants to achieve better laptop support some sort of
basic security system should be in place besides 'no open ports'. As
laptops are so mobile and connecting to so many unknown networks. Why
not take advantage of Netfilter's excellent stateful packet inspection?
Shouldn't this be of higher priority?
Yes I could write some simple rules that would suffice but what about
other users?
Thanks, Lance(stuNNed)
More information about the ubuntu-devel
mailing list