[ale] a web page server hack

Kevin Krumwiede krum at smyrnacable.net
Thu Feb 14 02:14:03 EST 2002 

You don't need much for a firewall, or even a low-traffic web server.  This
is what I use:

cable---webserver/firewall---switch--------------
                                      |         |
                                    laptop   desktop

The webserver/firewall is a PII-266 with 64MB, running Linux 2.4, an
iptables firewall, and Apache.

There is a weakness in this configuration.  As others will tell you, it's
generally not a good idea to run services on a firewall because if they get
hacked then the whole network is vulnerable.  Well, I decided that for my
personal use, that's a risk I'm willing to take.  Each machine on my network
is individually firewalled, and I don't want another PC running all the
time.

Krum


> -----Original Message-----
> From: Stephen Turner [mailto:artic_knight at yahoo.com]
> Sent: Wednesday, February 13, 2002 6:49 PM
> To: Kevin Krumwiede
> Subject: RE: [ale] a web page server hack
>
>
> yea i plan to run a firewall, i need to purchase a new
> faster computer for desktop joy use, and i need to
> purchase a computer suitable for a firewall (any
> suggestions are MORE than welcome ;) ) the current
> desktop will become the webserver until it gets over
> worked then a experimental box. however this means i
> have to purchase some hardware on a not unlimited
> budget, so i need an adequate yet nonexpensive
> firewall for cable/internet ...  however i believe the
> firewall may only be used for the server due to i do
> not know much use of firewalls and well, we run games
> and such on the lan and internet, i wouldnt want to
> block traffic. but i do not know much about linux
> firewalls yet either so who knows, any comments?
>
> __________________________________________________
> Do You Yahoo!?
> Send FREE Valentine eCards with Yahoo! Greetings!
> http://greetings.yahoo.com


---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.

More information about the Ale mailing list