|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Question about securelevel
roberto
redix.it
Date: Wed Feb 11 2004 - 09:02:45 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
>
> On Feb 11, 2004, at 8:12 AM, robertoredix.it wrote:
>
>> Could this configuration be considered secure, according to you?
>
> There's no way to determine that without some consideration of the
> threats you are facing. Security considerations against simple attacks
> (e.g., kiddies) are a lot different than considerations against
> industrial espionage, against discovery by the secret police, and
> against very smart government spies.
>
> What are you protecting? From whom? At what cost?
>
> --Jim
>
You are right: I agree with you that security consideration can be
different depending on what to protect, from whom etc. And even a sigle
machine implementing a packet-filter is only a little part of a firewall
architecture.
But my discussion is trying to address the weakness I red about
securelevel into the mailing list archive.
Could securelevel+readonly file system result in a more secure O.S.?
Regards
Roberto
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to
"freebsd-security-unsubscribefreebsd.org"
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]