On Thu, 7 Jun 2001 dgillett@deepforest.org wrote: > It's a firewall appliance, made by NetScreen (www.netscreen.com). Oh. > Different people have different preferences for firewall appliances > versus running software firewalls on general-purpose hardware. [I do > not claim there are no bad appliances, and I'll even concede that > deploying an appliance firewall badly is no harder than deploying a > software firewall badly. I *do* believe that good appliances exist, > that they can be configured and deployed well, and that general- Can you give an example of: 1) Good/BAD firewall appliances 2) Good/BAD software firewalls > purpose hardware and OSes include inherent capabilities and features > that (a) are not necessary to the firewall task and (b) provide > additional opportunities for compromise.] Oh ok that makes sense. I never heard of any mainframes being cracked into. Can we take some lessons from mainframe OS design and apply to *NIX/Win32 world? > > $1,000 i could buy a 1 Ghz Pentium machine (sans monitor) loaded up > > :) > > Do you understand why this machine would be a porr basis for a > firewall? Hmm not sure. Because all those CPU cycles would be wasted? Zach uram@cmu.edu "Blessed are those who have not seen and yet have faith." - John 20:29 - [To unsubscribe, send mail to majordomo@lists.gnac.net with "unsubscribe firewalls" in the body of the message.]