> I missed that bit. Cool, that takes care of the local media, but we seem to
> be talking about security from two different perspectives.

There's more than one perspective to every security equation... ;-)

> So how exactly does your Nokia protect you from a trojan you collected via
> http from a valid website quietly connecting out by itself, or being
> activiated from more embedded commands on another web page?

Well, it's not really the main function of the router, or any router. I
know that e.g. SonicWall will watch certain ports known to be associated
with Trojans, but that's a backward way of handling the problem. An
antivirus that'll ferret out and remove the Trojan is a much better idea.

 
> How does it notify you if someone is chipping away at it with vulnerability
> scanner?

It doesn't, and it would be nice to have an overview of what's happening
on the outside interface. I'm not aware of any DSL router that provides
that kind of information though... is there one?

> For individual home use it's probably OK, but many people on this list and
> business customers I've dealt with have indicated that they want a more
> comprehensive Internet security solution than that provided by the plain old
> Nokia M10/11.
>
> Auditable security policy, better bi-directional traffic control, hardened
> kernel, IPSec VPN capability, logging and alerting.....all the stuff we've
> discussed here before.
>
> Using the Wireless option on these things is like plugging your PC's
> directly into the existing M10/11. Sure, you can pinhole only certain
> inbound stuff to particular boxes but personally I prefer to take it through
> a real firewall first.

Well, I guess you'd better not use the wireless interface then. ;-)

-- Juha

This message is part of the NZ Broadband mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to majordomo@unixathome.org
with "unsubscribe adsl" in the body of the message
Received on Thu Sep 7 12:55:37 2000