> % i worry that this is based on
> % rather then netfilter/iptables,
> % considering ipchains is not stateful.
> And a year later, same deal. Useless.
None of the BSDs appear to have iptables either, yet many consider them more secure than Linux.
Smoothwall is also based on a 2.2 kernel and also uses ipchains. At least with both systems you get a minimal system that is easy to administer.
Cutting down a 2.4 distro and making it very secure isn't a straightforward task. You're more likely to be hacked with a DIY 2.4 firewall IMHO.