This is the first article in the mini-series of two articles about Firewall Builder.
Systems administrators have a choice of modern Open Source and commercial firewall platforms at their disposal. They could use netfilter/iptables on Linux, PF, ipfilter, ipfw on OpenBSD and FreeBSD, Cisco ASA (PIX) and other commercial solutions. All these are powerful implementations with rich feature set and good performance. Unfortunately, managing security policy manually with all of these remains non-trivial task for several reasons. Even though the configuration language can be complex and overwhelming with its multitude of features and options, this is not the most difficult problem in my opinion. Administrator who manages netfilter/iptables, PF or Cisco firewall all the time quickly becomes an expert in their platform of choice. To do the job right, they need to understand internal path of the packet inside Linux or BSD kernel and its interaction with different parts of packet filtering engine. Things get significantly more difficult in the installations using different OS and platforms where the administrator needs to switch from netfilter/iptables to PF to Cisco routers and ASA to implement coordinated changes across multiple devices. This is where making changes get complicated and probability of human error increases. Unfortunately typos and more significant errors in firewall or router access list configurations lead to either service downtime or security problems, both expensive in terms of damage and time required to fix.
Ubuntu has the strongest chance to take Linux mainstream
Interesting interview with Samba’s Jeremy Allison – Samba project founder.
Comming soon: Wine 64 bit For 64 bit MS-Windows application
I can finally report success on the first ever win64 program running on wine. The program was a textbook classic, but to make it work gcc had to be changed a lot. This was done by Kai Tietz, who has put a lot of effort in the task of making gcc accept the calling convention.
Windows XP: The OS That Won’t Quit
Dell announced it will offer systems with the aging Windows XP for a surcharge of US$150 over the newer Windows Vista–this only five months after it stopped offering XP on its Inspiron consumer desktop and laptop PCs. May be it’s time to move on to Linux 😉
Culture and community go hand-in-hand with Perl programming
This time we chat with Larry Wall, creator of the Perl programming language and regarded as the father of modern scripting languages.
Linux scalability and performance notes from Facebook
Great talk! If you’ve read anything about scaling large websites, you’ve probably heard about memcached. memcached is a high-performance, distributed memory object caching system. Here at Facebook, we’re likely the world’s largest user of memcached.
How to sync Evolution with Google’s PIM apps
While I’m a die-hard Google user — especially the PIM apps — I still appreciate offline applications for the integration with the desktop, speed, and features they sport. The Evolution contact and calendaring application is a great example: it’s as feature-packed as Microsoft Outlook, but with GNOME integration, and it’s fast. Gmail, by comparison, is slow and lacks any desktop integration. In a perfect world, Evolution would sync with Google’s PIM apps. Unfortunately, there aren’t any good, easy-to-use, comprehensive guides for setting up Evolution to sync with all of these apps — until now.
Wordpress Disable RSS Feed
Explains how to disable Wordpress RSS / Atom / RSS2 feed url in 2 simple steps.
I’m launching a new version of nixCraft. A couple of functionality changes you’ll notice:
- Clean design and less clutter
- Faster loading – content coloum get loaded first
- No ads between content
- No more captcha
- You can now have avatars via prominent Gravatars service.
I’m planning to add following two features:
- PDF download for large articles
- Magazine style home page
The fine header and other design was executed by Divya Manian and design based upon thesis theme framework.
Finally, I hope you like new changes. Please add your suggestions and feedback in the comments below.
Wordpress 2.7 promises to add threaded comments support along with lots of new features. Checkout Ryan’s blog post about all upcoming features.