Andrei writes: > You seem to assume it is impossible for a packet to reach one of the > other internal computers without taking the detour via the server (and > it's firewall). Maybe I'm paranoid, but I wouldn't base the security > of my internal network on this assumption.
If I understand correctly he has the modem in bridge mode and is running pppd on the server (I am doing this as well though I also have two NICs on the server). Thus there is no IP traffic between the modem and the server: just PPP. Even if the PPP packets were to reach one of the other computers they could do nothing with them unless they were also running pppd. I suppose an attacker could seize control of the modem (hard to do when it's in bridge mode) and then launch an attack, though. Modem firmware has a history of being buggy and full of holes. I'd rather not let it have any access at all to my network. NICs are cheap. -- John Hasler -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/87ei7cm0b5....@thumper.dhh.gt.org
