[CentOS] Centos VPS Kernel 2.6.35.4 & 'string-less' IP tables
Karanbir Singh
mail-lists at karan.org
Wed Aug 31 13:35:27 UTC 2011
On 08/31/2011 12:10 PM, Walter Haidinger wrote:
> PS: To install iptables from source is pretty straightforward:
> get the tarball from netfilter.org, unpack and run:
> ./configure --prefix=/opt/iptables&& make&& make install
And at that point you lose. All management capability or the ability to
audit / track or even upgrade along the distro. Installing from source,
is almost always the wrong solution; There are *some* places where it
might be a workable solution, but really do you want your first line of
machine defence to be from source ? Just the amount of effort needed to
make something like that work is huge.
- KB
More information about the CentOS
mailing list