<p dir="ltr">On Apr 15, 2014 1:02 PM, "Jaroslav Reznik" <<a href="mailto:jreznik@redhat.com">jreznik@redhat.com</a>> wrote:<br>
><br>
> = Proposed System Wide Change: Workstation: Disable firewall =<br>
> <a href="https://fedoraproject.org/wiki/Changes/Workstation_Disable_Firewall">https://fedoraproject.org/wiki/Changes/Workstation_Disable_Firewall</a><br>
><br>
> Change owner(s): Matthias Clasen <<a href="mailto:mclasen@redhat.com">mclasen@redhat.com</a>><br>
><br>
> The firewalld service will not be enabled by default in the workstation<br>
> product.<br>
><br>
> == Detailed Description ==<br>
> The current level of integration into the desktop and applications does not<br>
> justify enabling the firewalld service by default. Additionally, the set of<br>
> zones that we currently expose is excessive and not user-friendly. Therefore,<br>
> we will disable the firewall service while we are working on a more user-<br>
> friendly way to deal with network-related privacy issues.<br>
><br>
> It will of course still be possible to enable the firewall manually.<br>
><br>
> == Scope ==<br>
> * Proposal owners/Other developers: Add a Workstation-specific service<br>
> configuration (preset ?) to the firewalld package that disables firewalld for<br>
> the Workstation product<br>
> * Release engineering: No action required<br>
> * Policies and guidelines: No action required<br>
><br>
Probably we should write something like setroubleshoot?<br>
It will scan listen ports and with oneclick provide "open" "ignore", etc.</p>