Reading the netfilter design
The 2.4 kernel's new firewall framework, netfilter, has been in development for over a year. Reading the design documents this week has clarified what the next decade of Linux firewalling is going to look like.
Notes from the field
Writing
Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.
Showing posts tagged design — 2 results.
Honeypot v2: design notes
After a year of running my small honeypot and reading the Honeynet conversations, I am rebuilding from scratch. The new architecture takes a different approach — high interaction in a contained environment — and the design choices are worth writing down before I commit to them.