Re: [Devil-linux-develop] suggestions for 0.5 Beta CD layout

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

What I'd propose is, let us include the possibility of burning the
configuration of the firewall onto the cdrom, and you can reboot the
system every couple of days (maybe every sunday) so a hacker doesn't
have much fun on the system anyways.

Security is always a compromise between convenience, usability and
security. My focus is on systems, which are "secure enough" but still
reliable and convenient. When you're used to remote administration
like I am, you'll begin to detest any kind of moving parts in
computers, since they constantly fail ... so my most favoured setup
atm is a firewall that runs from EEPROM/Ramdisk combination which has
a readonly-switch on the flash card. So when I have to make changes to
the system, I just call my friend and tell him to enable writing to
the flash, then I put the updates on, and afterwards he switches it
back to readonly. The system runs from ramdisk though, to be able to
pull the flash card during operation and flip the switch.

bye
   MM

Martin Mueller      Phone: +49 39298 4125      e-mail:  mm...@si...
		    ICQ:         99023536              mm...@lu...
PGP/GPG mail welcome, keys as well other stuff at:  http://themm.net