Hi all:

In the recent Westside PLUG meeting, I raised the question of security. 
We newbies are typically busy figuring Linux out, and not necessarily
keeping up with security.  

Let me zoom in on one question for now:

My Linux box is my workstation, not a server.  I have ipchains running
(for now, let's say that I have it all properlytweaked in).  At the same
time, I see solutions like these:

	http://www.hotbrick.com/vpn600.html
	http://netmind-firewall.com/

My question:  Do solutions like the above exist because in a network,
it's easier/better to handle the security issues in one place, for
everyone?  Or is there something *inherently superior* in the "hardware
firewall" approach that is compelling compared to *any* firewall
software running on a single-user desktop?

Another way of asking it:  the Linux Newbie who inserts one of these
internet appliances between the Cox cable and his cable modem -- is he
ipso facto more secure than if he is just running ipchains on his
desktop?

(I use "ipchains" to mean any software firewall solution -- I don't know
any better).

Craig (the "other" Craig) :-)