From owner-freebsd-security@FreeBSD.ORG Thu Feb 19 22:20:21 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4AB7816A4CE for ; Thu, 19 Feb 2004 22:20:21 -0800 (PST) Received: from punky.seifried.org (punky.seifried.org [216.194.67.129]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3B07143D2D for ; Thu, 19 Feb 2004 22:20:21 -0800 (PST) (envelope-from listuser@seifried.org) Message-ID: <00b001c3f779$91ba8750$1400000a@bigdog> From: "Kurt Seifried" To: "Dorin H" , "Darren Reed" References: <20040220003052.41695.qmail@web12606.mail.yahoo.com> Date: Thu, 19 Feb 2004 23:20:00 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit cc: freebsd-security@freebsd.org Subject: Re: traffic normalizer for ipfw? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Kurt Seifried List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 20 Feb 2004 06:20:21 -0000 It's not like you HAVE to use it. It's an option, you can use it, or not. As far as the symantic arguments of firewalls/IDS/IPS/etc (technically I'd say scrub is more an IPS style feature then IDS since it actively manipulates the data to make it less "dangerous") please let's not go there, it's pointless. Isn't choice a good thing? Kurt Seifried, kurt@seifried.org A15B BEE5 B391 B9AD B0EF AEB0 AD63 0B4E AD56 E574 http://seifried.org/security/