Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Linux
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Content Filtering Firewall in Linux..

from [Andrew Rucker Jones] Network Security [Permanent Link]
Subject: Re: Content Filtering Firewall in Linux..
Date: Thu, 18 Aug 2005 19:43:46 +0200 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Dhruv,
        Using iptables/Netfilter for this is the wrong idea for sure. It breaks
the TCP connection, leaving both ends hanging. It is also very
susceptible to false positives. You want a real content filter. I use
DansGuardian (http://www.dansguardian.org/) with DansGuardian Antivirus
(http://sourceforge.net/projects/dgav/) and ClamAV
(http://www.clamav.net/) and am happy. The setup is not the easiest, but
the product works well. Please note that DansGuardian is free for
non-commercial use, but requires an inexpensive license for businesses.
Read the licence if in doubt.

                -&

Soi, Dhruv wrote:

Is anyone aware of such firewall in linux. I have used ipcop, iptables, 
shorewall and have read that applying netfilter patch to kernel for HEX 
search can provide such capability. Would anyone of you like to put your 
thoughts over it?
 
Thanks
Dhruv


- --
GPG key / Schlüssel -- http://simultan.dyndns.org/~arjones/gpgkey.txt
Encrypt everything. / Alles verschlüsseln.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iD8DBQFDBMjOoI7tqy5bNGMRA2KBAJ9uml8iWu6OKndladaELMkHHHeUVwCaA9ii
Ofg+kysO7AxgKI6X1LKlJKM=
=hhPv
-----END PGP SIGNATURE-----
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: OPIE, ERACC
Next by Date:  Re: Content Filtering Firewall in Linux.., Craig Van Tassle
Previous by Thread:  Content Filtering Firewall in Linux.., Soi, Dhruv
Next by Thread:  Re: Content Filtering Firewall in Linux.., Tucker
Indexes:  [Date] [Thread] [Top] [All Lists]