OK...so it was the last post on THAT thread... ;-)

 Juha Saarinen wrote:

> There's more than one perspective to every security equation... ;-)
>

Absolutely. Heaps of 'em. This is what makes it so interesting!

> > So how exactly does your Nokia protect you from a trojan
> you collected via
> > http from a valid website quietly connecting out by itself, or being
> > activiated from more embedded commands on another web page?
>
> Well, it's not really the main function of the router, or any
> router.

Yes...they're for routing packets...

> I know that e.g. SonicWall will watch certain ports known to be
> associated
> with Trojans, but that's a backward way of handling the problem. An
> antivirus that'll ferret out and remove the Trojan is a much
> better idea.
>

Antivirus is a must, and this is strictly IDS, rather than firewall, but
your edge device doesn't necessarily have to know about every vulnerability,
just block the obvious or suspicious ones and give you enough information to
determine WITH is going on.

>
> > How does it notify you if someone is chipping away at it
> with vulnerability
> > scanner?
>
> It doesn't, and it would be nice to have an overview of
> what's happening
> on the outside interface. I'm not aware of any DSL router
> that provides
> that kind of information though... is there one?

Cisco 827 can syslog and trap a bunch of stuff...depending on your IOS
options.

Again, as you say the Nokia is a router (and it does that OK) not a packet
filter or a firewall.

> Well, I guess you'd better not use the wireless interface then. ;-)
>

As long as it doesn't cost me any more in modem rental and I can shut it
down if I want to, it could have a capuccino interface, for all I care.

(Now there's an idea!)

This message is part of the NZ Broadband mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to majordomo@unixathome.org
with "unsubscribe adsl" in the body of the message
Received on Thu Sep 7 13:13:41 2000