Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Fri 16 Nov 2018, 07:58
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Has anyone created a Puppy version to be just a firewall?
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [2 Posts]  
Author Message
purple379

Joined: 04 Oct 2014
Posts: 101

PostPosted: Mon 26 Jun 2017, 13:21    Post subject:  Has anyone created a Puppy version to be just a firewall?  

That is to plug my primary computer connection through, and controlled by a version of Puppy that acts to block all connections not specifically approved.

A bit overwhelming as a lot of sites insist that they go all over the internet to acquire advertising, or perhaps to record what the user is doing.

I guess I am showing my ignorance. I think the basic firewalls, are limited compared to some of the pay for products. Like on my Apple OS X, I used a program called "Little Snitch," which starts with its own white list, and then requires that I authorize any other contact. Although I can alter "Little Snitches" original White List if I choose.

I was thinking that such a Firewall might prevent the "Intel Management Engine" from having its firmware changed, and prevent the computer from sending information anywhere that the user blocks.

Also thinking it would be interesting to have a program that can verify which firmware is actually installed by pulling a copy, and going through verification. Not just reading the header. I guess that is not a Firewall issue though. Just seems it is not worth its own post.
Back to top
View user's profile Send private message 
s243a

Joined: 02 Sep 2014
Posts: 1275

PostPosted: Fri 29 Dec 2017, 02:02    Post subject:  

If you base your firewall on a whitelist then your don't need a large propriatary block list. If you connect to the internet via a proxy then your firmware probably won't know how to connect to a given website. Maybe use a blocklist for traffic going through the proxy and work on a whitelist philosophy for any trafic not going through the proxy.

If you are using puppy as a middlebox then any version of puppy should be able to do this. If you are looking for a security oriented version of puppylinix then give Pauli a Try. Also take a look at attack pup. It is old but might have some interesting network sniffing tools included with it.

A commercial firewall appliance uses deep packet inspection because in a comercial environment you might not know in advance what ports or connections that people need to make. This is probably overkill for a home network. If you need to connect to your home network remotly them maybe try some VPN software (e.g. tinc)
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [2 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0628s ][ Queries: 14 (0.0250s) ][ GZIP on ]