Best firewall gateway version of Linux ?

Sam Couter sam at
Tue Jan 15 16:13:17 EST 2002

Alex Satrapa <grail at> wrote:
> * And yes, I'm aware that the ping of death problem was quickly 
> rectified.  The question remains though - how many more flaws are there 
> in Linux networking code that we just don't know about yet?  It's 

This goes for any software, open source or proprietary, audited or not.
That's why to remain secure you need to keep up to date - both with
software (patches and so on) and with security advisories from your
vendor or BugTraq.

There's no magic bullet solution to the problem of remaining secure.

> possible that the only reason we don't see many more exploits for 
> Linux/Apache bugs is that Linux/Apache isn't yet as populous as 
> Windows/IIS.

I doubt it.

Apache is more popular than IIS and I'm sure it gets hammered on more
often. Breaking IIS is like shooting fish in a barrel, which makes it an
easy target for script kiddies. Fixes from Microsoft are slow (when they
come at all), and many people don't apply them or don't even know
they're running IIS. Microsoft is reactive about security, not
proactive. Blah blah blah.
Sam "Eddie" Couter  |  mailto:sam at     |  I need a short and
Internet Engineer   |  jabber:eddiesam at  |  clever comment for
tSA Consulting      |    |  my .signature file
OpenPGP fingerprint:  A46B 9BB5 3148 7BEA 1F05  5BD5 8530 03AE DE89 C75C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
Url :

More information about the linux mailing list