-------- Original Message -------- Subject: Re: clug Secure Firewalling, Runlevel 0 (?!) Date: Sat, 9 Feb 2002 09:15:21 -0000 From: "Jon Schneider" jon@axismilton.ltd.uk
Jon Schneider wrote:
Get the terminology right. Runlevel 0 is known as single user mode and it is not in anyway halted. The idea is that init, a shell and not a lot else runs. So that's fair enough. But why did you (in the general sense) install Redhat and not disable all those insecure daemons you didn't need running in the first place ?
Understood. But try to convey that in a very precise and unambiguous form in just a few words in a message title. Yours would be < >?
I'll just mention that this might be a bad state to leave a *BSD system in because it knocks down the intended securelevel. securelevel locks raw device access, immutable files and so on.
Indeed. Please remember that the focus of the article was on a Linux system, and a RedHat one at that. I for one would only run a dedicated firewall or proxy / Gateway on OpenBSD, anyway, just now, given the current state of GPL OS play.
But it is always good to have it put in a broader perspective.
--James