<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2800.1615" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Charles,</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Thank you for your reply.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I have a couple of Schneier's books and as expected
have not devoted my life to this subject so am content to rely on him and his
ilk.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>However, since you point out his position, why do
you bother...... knowing his view on all this :-) which
you, ostensibly, reject ?</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Cordially,</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Courtney</FONT></DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=hooterpincher@gmail.com href="mailto:hooterpincher@gmail.com">Charles
Shapiro</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=ale@ale.org
href="mailto:ale@ale.org">ale@ale.org</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Wednesday, November 05, 2008 9:53
AM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> Re: [ale] recommendations for
a..... standalone Linux securityfirewall...</DIV>
<DIV><BR></DIV>I'm a big phan of SentryCD ( <A
href="http://www.sentryfirewall.com/">http://www.sentryfirewall.com/</A> ) ,
although I think it's moribund at the moment. It's CD-based but runs boot
scripts off a floppy drive so you can load custom packages or configure it for
your hardware. <BR><BR>I use a couple of same-brand NICs mounted in an
el-cheapo used Pentium 2 box which a buddy of mine fobbed off on me when I
took some other hardware I wanted more from him. I think it has 128MB of
memory, which is plenty for what I'm doing. You can probably buy an
equivalent one at some place like MicroSeconds ( <A
href="http://www.microseconds.net/?page=AboutUs&set_location=GA">http://www.microseconds.net/?page=AboutUs&set_location=GA</A>
) for less than $100 if absolutely necessary. Tearing the HD out and running a
CD-based distro will lower your power requirements and keep things quieter --
definitely an asset in a house where you're paying for heat, cooling and
power. Plus I think it makes the system more durable. I run the actual
hardware 24/7 on a UPS and eventually the power-supply poops out. When that
happens I spend a couple of hours transferring the NICs and reconfiguring the
software and I'm back on the air. A box run in this fashion usually lasts 3-4
years for me.<BR><BR>My wireless network is set up with coova ( <A
href="http://coova.org">http://coova.org</A>) on a WRT54GL connected behind my
firewall. I'm still workin' out some details on this, but it's functional and
(reasonably) secure I think. I'm running an open hotspot with a terms of
service page, but coova also has a variety of other authentication options
which might be useful depending on your circumstances. Much khouler than
Linksys's shipped software, yet easier to configure than raw OpenWRT can be.
And I'm with Bruce Schneier ( ( <A
href="http://www.wired.com/politics/security/commentary/securitymatters/2008/01/securitymatters_0110">http://www.wired.com/politics/security/commentary/securitymatters/2008/01/securitymatters_0110</A>
) on offering a cup of internet to my neighbors.<BR><BR>--
CHS<BR><BR><BR>
<DIV class=gmail_quote>On Wed, Nov 5, 2008 at 9:19 AM, Jim Lynch <SPAN
dir=ltr><<A
href="mailto:ale_nospam@fayettedigital.com">ale_nospam@fayettedigital.com</A>></SPAN>
wrote:<BR>
<BLOCKQUOTE class=gmail_quote
style="PADDING-LEFT: 1ex; MARGIN: 0pt 0pt 0pt 0.8ex; BORDER-LEFT: rgb(204,204,204) 1px solid">
<DIV class=Ih2E3d>Geoffrey wrote:<BR>> Courtney Thomas
wrote:<BR>><BR>>> Greetings !<BR>>><BR>>> I want to use
a standalone Linux box, possibly running from a CD and through<BR>>>
which all must pass, at least from the internet, that will be a firewall
for<BR>>> my home LAN. But if running from a CD gains nothing, forget
it. I have<BR>>> several older idle boxes if they'd suffice. I can
also go wired or wireless,<BR>>> and am receptive to any
setup.<BR>>><BR>>> What recommendation(s) do you have for such a
box, please ?<BR>>><BR>><BR>>
Smoothwall<BR>><BR>><BR></DIV>Just curious, do you have to have a
system with two NICs to run a<BR>firewall? From a security standpoint, it
make sense but is it a requirement?<BR><BR>Thanks,<BR><FONT
color=#888888>Jim.<BR></FONT>
<DIV>
<DIV></DIV>
<DIV class=Wj3C7c>_______________________________________________<BR>Ale
mailing list<BR><A href="mailto:Ale@ale.org">Ale@ale.org</A><BR><A
href="http://mail.ale.org/mailman/listinfo/ale"
target=_blank>http://mail.ale.org/mailman/listinfo/ale</A><BR></DIV></DIV></BLOCKQUOTE></DIV><BR>
<P>
<HR>
<P></P>_______________________________________________<BR>Ale mailing
list<BR>Ale@ale.org<BR>http://mail.ale.org/mailman/listinfo/ale<BR></BLOCKQUOTE></BODY></HTML>