I am in the process of building a firewall. I do not need access to this machine...and it will do nothing but be a firewall/Router runnign IP Masq. It will log to a remote machine. Do you guys think it is a good idea to go through and remove all the stuff like compilers (gcc, etc) and the shells /sbin/sh, bsh, ksh, csh. It seems to me that if I did this, breaking into the box would do nothing....because it would have no way to do anything other than route packets.... I want to harden this thing as muchg as possible..I mean NO access to the actual system....I want it to be nothing but a means to send my cable modem to the other machines. I'm tlakin kill everything thats not ABSOLUTELY neccesary for it to route packets. what would I have to leave? exactly what programs do I need?
Rich