View Single Post
Posts: 248 | Thanked: 66 times | Joined on Oct 2009 @ Birmingham
#50
Originally Posted by farmatito View Post
I usually close all ports on the modem/router and forward only the needed ones to the server, this somewhat insulates the rest of your home network.
Would setting the new server to be on the DMZ be an option?

I did this with my Xbox at one point when I was having trouble with multi-player - and basically assigning a static IP to the Xbox and then assigning that specific IP to be the DMZ server on my router allowed ALL traffic to and from the Xbox without any firewall at all.

Now as far as I, personally, would be concerned this wouldn't be an issue, as there would be a clean install of a Linux distro on the server and the only data would be community related.

However if people (end up) relying on mirrors etc allowing all traffic to the server puts it at risk of being tampered with, which wouldn't affect me personally, but may affect others, if you see what I mean.

I guess my question is, is assigning a community type web/repo server to DMZ secure enough?? In fact is assigning DMZ to any mirror, Debian etc, secure enough?
 

The Following User Says Thank You to davedickson For This Useful Post: