Insecurity of a not well configured firewall

Thu, 14 Aug 2003 12:31:59 -0700 

 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi all,
in few (I hope) weeks I am going to buy a new PC and so I would take
advantage of the one I am currently using (that will become the old
one) as firewall (with RH 9.0) to put between the cable modem and the
(new) computer (that will become the main PC for daily use).

Since I would like to exercise more with Linux (I am still a newbie)
I will use the old one also to run (linux) applications other then
the firewall. Since, as I said, the new computer will become the main
PC for daily use, and so I will have both documents and downloaded
Linux software on it, I am going to make a local network between the
two PC (to access to the documents and downloaded Linux software).

Now my question is: if I do not correctly and strongly configure the
firewall (as I said I am a newbie, even if I am reading HOWTOs), is
there a chance that some attacker could crack into the firewall
(Linux) box (because the firewall is not well configured), take
advantage of the local connection and crack also into the other
computetr (the new one that I will use for daily use and it is going
to have WinXP)?

My actual configuration is a single PC (the one that will become the
old one) with WinXP Pro. and two desktop firewall (ZoneAlarm and
McAfee Firewall 4) connected directly to the cable modem. Would be
better (or at least less insecure) if I put the new PC (that will
have WinXP Pro.) directly connected to the cable modem with those two
desktop firewall and put the PC with Linux beyond the new one (and
use it only to exercise with Linux and not for firewall)?

Thank in advance.



Di Fresco Marco
ICQ #51985192


|---------------------------------------------------------------------
|--| 
| Spock (Court Martial - TOS): If I let go a hammer on a planet
| having        | a positive gravity, I need not see it fall to know that it
| has, in       | fact fallen.                                                         
                 |
|---------------------------------------------------------------------
|--|

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2

iQA/AwUBPziRqLhjIctyb3++EQJdCACghpZvMrJnzI2dAWhkVbJGzNSvbKkAnjWE
eByymYEd4X/JmWZ1BrtXxpNb
=/bvv
-----END PGP SIGNATURE-----


-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://www.redhat.com/mailman/listinfo/redhat-list

Reply via email to