Re: OT: Internet access for old RH machine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Tue, Mar 17, 2009 at 22:06:39 +0000,
  Stewart Williams <lists@xxxxxxxxxxxxxxxx> wrote:
> 
> I was wondering if there was a way I could connect it to my router, but
> segregated some how, such as an encrypted VPN tunnel. So that if it was
> exploited it couldn't compromise the security of my main LAN.

That's probably over kill. Mostly you'll be pretty safe if you stick to trusted
web sites and use iptables to block inbound connections. There may be some
kernel bugs that could get exploited without an actual connection, but those
attacks will probably be rare and if your router is doing NAT very difficult
to send on to this machine.

As far as compromizing other machines, they should be set up to survive on
their own in any case. The main additional threat is sniffing local traffic.
Depending on what kinds of local traffic you have, you might need to take
some steps to mitigate this threat. In general the risk of the old machine
being compromised if treated as above isn't going to be a lot higher than
that of other machines used to do more risky things.

-- 
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux