lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
From: listuser at seifried.org (Kurt Seifried)
Subject: [OFFTOPIC] Zone Alarm

Increased complexity is not a good thing. Think about it folks:

Solution A) PC with zonealarm, relatively easy to configure (it's what I
reccomend to most users).

Solution B) Hardware firewall with potential security flaws such as web
interface, firmware flaws, etc. Difficult for user to update, if firmware
update fails product is largely "Dead". None of these systems I have seen
have automated updates or even prompt the user to check for new software
versions/etc. Result: firmware falls out of date, web interface/etc possibly
exposed, increased exposure for user.

Solution C) a PC with some form of UNIX installed to act as a firewall. User
needs to learn to become UNIX administrator, configure and update system.
You are kidding right? This opens up a HUGE number of potential
vulnerabilities, increases complexity hugely, and costs quite a bit as well.

This is insane.

NOW PLEASE LET'S KILL THIS THREAD.  DO NOT REPLY TO THIS PUBLICLY.

Kurt Seifried, kurt@...fried.org
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://seifried.org/security/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ