Quote Originally Posted by questio verum View Post
I've got too much clutter around me already, I've also wondered if anything would be gained from setting the firewall to boot from cd only, and eliminate any writeable media. Is that feasible?
It's do-able, but whether you'd want to do that is another matter. Maybe you could set it up to run from some kind of flash memory card. A PC with no hard disk, a compact flash card plugged into an IDE port on the mainboard and a boatload of RAM might server you better. Making permanent changes to the firewall is quite tricky if it's all running from CD rom. Also there will be security updates from time to time, and having to re-cook a CD after each update would be a p-i-t-a.