On Tue, 16 Oct 2007 16:16:02 +0530, Rony gnulinuxist@gmail.com said:
Gabin Kattukaran wrote:
I've had similar problems as well. There are so many things that most people take for granted about Windows. It normally means extra effort when you're using a system like linux.
Take ergonomics for example. When I used to Windows, The system ensured that I took the prescribed number of breaks from using the keyboard and mouse. This damn linux thing refuses to crash! I'm forced to work all these extra hours.
Thanks to Linux, I am forced to take breaks. Whenever I open a multi-page pdf file, it hangs into a runaway process and I am forced to reboot my computer and re-download the pdf. Windows is so boring, I simply double click on that file and it opens up without any fuss. I also find my Linux hanging when I open Firefox, OO and Thunderbird together. Windows just does not listen and opens them up side by side.
Err, what? What kernel are you using? and what distro? I find Linux far less bloated than windows, and far more responsive (love the new CFS).
I have dbdesigner, three gimp files, firefox, several emacs frames, 8 xterms, and bouml all open right now, as I compose this email.
I never had this problem in windows. I used an interactive firewall. In linux I cannot control what goes out of my system. The firewall works one way only.
You have evidently not discovered shorewall. Name me one windows product that has built in support for port knocking.
Package: shorewall Description: Shoreline Firewall, a high-level tool for configuring Netfilter Shorewall allows you to describe your firewall/gateway requirements using entries in a set of configuration files. It reads those configuration files and, with the help of the iptables utility, configures Netfilter to match your requirements. . Shorewall supports a wide range of router/firewall/gateway applications, traffic shaping and almost every type of VPN.
I have been able to set up port forwards, source NATs, destination NAT's, virtual machines providing services with full connectivity (by putting 2 IP addresses on my NIC), adaptively firewalling abusers of non-port-knocked ports by using fail2ban.
Package: fail2ban Description: bans IPs that cause multiple authentication errors Monitors log files (e.g. /var/log/auth.log, /var/log/apache/access.log) and temporarily or persistently bans failure-prone addresses by updating existing firewall rules. Allows easy specification of different actions to be taken such as to ban an IP using iptables or hostsdeny rules, or simply to send a notification email. Currently, by default, supports ssh/apache/vsftpd but configuration can be easily extended for monitoring any other ASCII file. All filters and actions are given in the config files, thus fail2ban can be adopted to be used with a variety of files and firewalls.
manoj