On Wed, Jan 16, 2002 at 01:00:30AM +0100, martin f krafft wrote: > also sprach justin cunningham <[EMAIL PROTECTED]> [2002.01.15.1907 +0100]: > > Given the above details what's the best way to approach the project? > > to add just what you want, so you will probably want to add "ssh" and > maybe some security tools like "arpwatch", "snort", "tcpdump", > "logcheck", "iptables" (kernel 2.4) or "ipchains" (kernel 2.2), > "kernel-image-2.2.20" (you don't want to run < 20, and 2.4 isn't ready > for production in many peoples' opinion (i use it for production > though)).
IMHO, the added flexibility of iptables beats makes 2.4 safer than 2.2 - just just need to set up uptables Right.
