Krikofer,
Well, there is ipchains. It's free. It probably stops somewhere between
90 and 99.5% of all attacks. (I'm not a security expert.)
I know that there are commercial firewalls available, but I haven't
tried them. What people seem to ask for from ipchains, is to implement a
'statefull firewall protocol' which (if I've undestood it correctly)
will keep a relation between outgoing and incoming packages, which
ipchains still doesn't do. The current version of ipchains will evaluate
every package (in or out) independently, without putting it in any sort
of 'communication dialogue context', if you see what I mean.
An important question is how the firewall is to be used.
1) Dial-up or permanent Internet connection?
2) What kind of services will be avaliable through the firewall?
(Consequently; what ports will be open?)
3) Home use or professional?
4) To protect data of low, medium or high importance?
5) What's the cost and impact after a potential successful break-in?
Having asked those questions, you should be able to decide if the
free(!) ipchains is secure enough for your needs or if a commercial
firewall (that *might* be more secure) is worthwhile the cost.
Best regards and HTH
Gustav
> Krikofer wrote:
>
> Hi. My friend had told me that Linux does not have a good firewall.
> Linux can be broken into easily (according to his job's system
> administrator). Would any of you know if this is true? He says his
> friend likes Linux. Any facts?
>
> CH
--
pgp = Pretty Good Privacy. To get my public pgp key, send an e-mail to:
[EMAIL PROTECTED]
Visit my web site at http://www.schaffter.com
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
