Firewall
Rudolf Kastl
che666 at gmail.com
Thu May 6 07:04:34 UTC 2010
2010/5/6 Christoph Wickert <christoph.wickert at googlemail.com>:
> Am Dienstag, den 04.05.2010, 23:54 +0100 schrieb Bastien Nocera:
>
>> We really only block incoming communications right now, and it's
>> probably as much of a security risk as opening all the ports, as far as
>> I'm concerned.
>
> Why is closing ports a security risk?
you understood it wrongly... actually only filtering incoming ports is
a one sided thing. a real firewall setup filters both direction.
turning filtering off completly though is even for a desktop a touch
decision. there are still people who do not have a nat router but are
connected to the net directly. and filtering off by default will be a
security issue for their desktops... i am curious what argumentation
chain will come up to disable filtering completly by default and how
it doesent help those users in having a more secure box by default,
even if they turn on some services for virtual machines or other
crosslinked boxes. lets see.
kind regards,
Rudolf Kastl
rhce rhca rhcss rhcx
>
> Regards,
> Christoph
>
> --
> desktop mailing list
> desktop at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/desktop
>
More information about the desktop
mailing list