Firewall
Rudolf Kastl
che666 at gmail.com
Thu May 6 07:05:45 UTC 2010
2010/5/6 Rudolf Kastl <che666 at gmail.com>:
> 2010/5/6 Christoph Wickert <christoph.wickert at googlemail.com>:
>> Am Dienstag, den 04.05.2010, 23:54 +0100 schrieb Bastien Nocera:
>>
>>> We really only block incoming communications right now, and it's
>>> probably as much of a security risk as opening all the ports, as far as
>>> I'm concerned.
>>
>> Why is closing ports a security risk?
>
> you understood it wrongly... actually only filtering incoming ports is
> a one sided thing. a real firewall setup filters both direction.
> turning filtering off completly though is even for a desktop a touch
i meant tough of course. *slowly wakes up*
> decision. there are still people who do not have a nat router but are
> connected to the net directly. and filtering off by default will be a
> security issue for their desktops... i am curious what argumentation
> chain will come up to disable filtering completly by default and how
> it doesent help those users in having a more secure box by default,
> even if they turn on some services for virtual machines or other
> crosslinked boxes. lets see.
>
> kind regards,
> Rudolf Kastl
> rhce rhca rhcss rhcx
>
>>
>> Regards,
>> Christoph
>>
>> --
>> desktop mailing list
>> desktop at lists.fedoraproject.org
>> https://admin.fedoraproject.org/mailman/listinfo/desktop
>>
>
More information about the desktop
mailing list