“I don’t know of anyone who runs Devil-Linux as a production firewall in VMware, but I don’t know why it wouldn’t work fine.” You don’t even have to burn a CD, just point VMware’s CD to the ISO image, and point the floppy to another image (to save the config). All of the developers use VMware for testing. Bruce says, “Devil-Linux runs great in VMware. Bruce says, “I know some people who run services on their firewall because of lack of funds for more PCs, but we don’t recommend that because that lessens security.”Īnother option is to create a virtual server with VMware or a similar utility. This is functionality in the 1.0 release that was not previously available, but server use requires caution. However, Devil-Linux 1.0 can be used as a server. But the lack of an X-based graphical desktop is what makes it able to run at a decent speed directly from a CD. The only way you can browse the Web through it is with Lynx or another text-based browser. It was started in mid-2002 by Heiko Zuerker, who Bruce told us “is still project leader and developer.” In an instant messenger conversation yesterday, Bruce said, “I don’t think the membership on the list means much, since I personally use a lot of software that I’m not a member of their mailing lists.”īruce joined the project in May. This addition is primarily the work of Bruce Smith, who has also taken on the task of publicizing Devil-Linux, which has been a low-profile, low-key project until now, with six current developers listed at SourceForge, and fewer than 200 subscribers on its general discussion e-mail list. This utility basically does everything necessary to configure Devil-Linux to the level of a “hardware broadband firewall/router,” plus a little extra: You can set up two or three network cards you can configure a standard firewall script with IP-Masquerading/NAT and you can configure a DHCP server for your internal network. One of the biggest improvements in the new 1.0 version is a curses-based setup utility that brings GUI-like administration capability to what is otherwise a command line-based, stripped-down distribution. This is a better anti-hacker defense than any obscure password or software-based protection scheme ever developed. The Devil-Linux developers tend to be light-hearted, but don’t let their conversational silliness fool you: This is serious software with a serious purpose.Obviously, an operating system that runs from a CD can’t be altered by someone who tries to take control of the computer it’s on from a remote location. The Halloween release date and the ‘Devil-Linux’ name itself were chosen for humor value, not for religious reasons. Have you tested the new Firewall tool from Ubuntu that says that it makes packet filtering easier? There are tons of GUI firewall tools who's goal is to make it easy for novice users.Today, Halloween, marks the debut of Devil-Linux 1.0, a runs-from-CD (or USB flash device) firewall/router distribution designed to give you a large amount of security in return for very little setup work. If you issue the sudo ufw default allow command, all incoming packets will be allowed by default, creating a very unsecure packet filter but giving you the broadest range of allowed services. You set the default policy for filtering packets by running the sudo ufw default command and passing the allow or deny argument, depending on what you want to achieve. With UFW, enabling and disabling packet filtering is a simple matter of issuing the sudo ufw enable and sudo ufw disable commands. You must run UFW commands as root, so in Ubuntu, you must preface them with the sudo command. The Uncomplicated Firewall (UFW) is a new tool from Ubuntu whose goal is to make configuration of the built-in Linux packet filter less complicated and more secure for novice users.
0 Comments
Leave a Reply. |