On Thu, 8 Sep 2005 16:19:53 +0000 (UTC), James wrote: > > By picking up a bunch of rules from some web site somewhere, you run > > the risk of learning from bad rules (like learning HTML by picking > > apart web sites). If a well known and well used program like > > Shorewall generated bad rules, they'd be picked up immediately. > > Looking at bad rules, learning why they fail, and watching an attack > (either generated by myself or others) with an IDS and other tools > running can be an excellent learning experience.
Only if you know they are bad rules. Bearing in mind that you are unlikely to find a site that says "here are my iptables rules, aren't they crap?", how will you know whether you are learning from good or bad examples? -- Neil Bothwick What Aussies lack in Humour they make up for in Beer!
pgpg0ewppBkeh.pgp
Description: PGP signature
