2010/5/6 Christoph Wickert <christoph.wickert(a)googlemail.com>:
Am Dienstag, den 04.05.2010, 23:54 +0100 schrieb Bastien Nocera:
> We really only block incoming communications right now, and it's
> probably as much of a security risk as opening all the ports, as far as
> I'm concerned.
Why is closing ports a security risk?
you understood it wrongly... actually only filtering incoming ports is
a one sided thing. a real firewall setup filters both direction.
turning filtering off completly though is even for a desktop a touch
decision. there are still people who do not have a nat router but are
connected to the net directly. and filtering off by default will be a
security issue for their desktops... i am curious what argumentation
chain will come up to disable filtering completly by default and how
it doesent help those users in having a more secure box by default,
even if they turn on some services for virtual machines or other
crosslinked boxes. lets see.
kind regards,
Rudolf Kastl
rhce rhca rhcss rhcx
Regards,
Christoph
--
desktop mailing list
desktop(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/desktop