Newbie

[David Vincent]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Chris wrote:
>>> I agree here, if you have a low-end box, install smoothwall. Use the
>>> new Lappy for YOUR install of Ubu (or what ever *nix you wish to
>>> play with).
>> one thing about smoothwall which is starting to bother me is the lack
>> of security on the login page - no https thus an attacker can sniff
>> the admin password off the wire and then gain access to the firewall.
>> that's bad.
> 
> ... that's assuming you are accessing the admin from outside the local
> network. It's prolly not wise to allow something like that.

no.  if you access the admin page on the smoothwall your login is in
clear text.  however - by default you cannot access the admin pages from
outside the network.

> for example, I can admin my routers etc from within my own net, but
> it's shutoff on the wan side. I have to assume that smooth has the same
> option.

yes.  see above.  you cannot admin the smoothwall from outside the
network unless you setup a rule to specifically allow it.

as a general statement networks are crunchy on the outside with a chewy
center.  it is up to you to determine how much you care.  i'm starting
to care about this issue on my home network with my smoothwall which is
why i brought it up for the OP in case he decides to go with the
smoothwall solution.

i've used smoothwall express 2.0 and 3.0.  2.0 worked flawlessly for me.
for a long time.  3.0 has rebooted spontaneously on me five times in two
months.  i'm still trying to figure out if it is due to a hardware
problem i'm having or a flaw in the software (i have snort, traffic
shaping, and the web proxy all turned on so the problem i am
experiencing may be in there, not sure - ymmv).

- -d
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHv3COfpRzWFIV0XMRAiBoAJ9pszJHEJ8fESCYVYBndksFEED0dgCeMpsq
wF1GS+yPPcSv8qouLJjSK9M=
=6XzN
-----END PGP SIGNATURE-----