On Tue, 27 Aug 2019 at 14:20, <mcatanzaro(a)gnome.org> wrote:
The main competitor of Fedora Workstation is Ubuntu. Ubuntu ships without a firewall
enabled and nobody considers this a critical vulnerability. Now: why is that...?
1. Ubuntu Server ships without a firewall enabled. Do you think that's
a good policy? Should we turn off the firewall in Fedora Server
because Ubuntu Server does so?
2. Are you sure that nobody considers that critical?
"There is a lot of existing information about firewalls - along with
**a long-term raging debate on the need of a firewall on Ubuntu**. We
recommend you enable it because you have ports open if you are reading
this page."
Source:
https://wiki.ubuntu.com/BasicSecurity#Firewall
So it's not critical, it's not enabled by default, and still they
recommend you to enable it (!).
Iñaki