Quoting Tim Haynes <[EMAIL PROTECTED]> on Tue, Dec 10 13:44: > > c) having to have no firewall, or extra holes in a firewall, in order to > detect a finite set of events seems daft when you could just be blocking > them already by default.
So don't poke extra holes in the firewall, but instead use portsentry as a second layer of defense. If for some reason the firewall totally breaks (as it did once on a dist-upgrade), portsentry will be ready to defend. Omen -- If A = B and B = C, then A = C, except where void or prohibited by law. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
