[oclug] Rogers or Bell?
David F. Skoll
dfs at roaringpenguin.com
Mon Mar 5 12:21:58 EST 2001
On Mon, 5 Mar 2001, Hazen Valliant-Saunders wrote:
> Have you ever worked with MAGMA???
Yes. I found them pretty helpful, certainly better than Sympatico.
> Have you ever tried setting up a filtering firewall for a dynamic IP with
> IPCHAINS it's a royal pain in the A**
No, it's a piece of cake. Filter by interface, not address. Filtering by
address isn't secure anyway. I have a single firewall script which runs
at startup and never has to change.
You do not need to have a script to monitor your connection; pppd does it
for you by running /etc/ppp/ip-up and /etc/ppp/ip-down.
> Not Rogers, I'm Reffering to BTP2/MPEG encrypting on your stream directly.
> Snooping becomes very hard that way.
Snooping on DSL lines is just as hard, because unless you can get into
the CO, you can't see traffic except your own.
> You see, If somone is snooping on a REDBACK to monitor traffic (Or if
> they've tapped your line), all they need is a filtering gateway to monitor
> traffic (PORTMAP anyone?).
If someone has snooped on a Redback, or has the hardware required to
tap into your phone line, they're a powerful enough adversary to get
at you whatever you do. The only reason Rogers needs encryption in the
first place is that you don't need special hardware to snoop traffic off
your cable segment.
For anything sensitive, I encrypt data, so I don't care if someone listens in.
--
David.
More information about the OCLUG
mailing list