On Sat, 2005-12-17 at 15:18 -0500, Sean wrote:
Well, the user is going to have to do something explicit to open up the firewall on the local machine.
Not if it scripted and/or plugged into system-config-securitylevel or whatever it is we use to manage the firewall locally these days.
But the fact is, if the feature is enabled on the router, there is nothing Fedora can do to stop some malicious program from using it. So all you're doing is stopping trusted programs from using the feature and its still available to be used by untrusted apps. The feature really must be disabled on the router itself if you don't like it.
Just because it is enabled on the router doesn't mean that we should preconfigure applications to exploit it. Bad call.
On Sat, December 17, 2005 3:58 pm, Jesse Keating said:
Well, the user is going to have to do something explicit to open up the firewall on the local machine.
Not if it scripted and/or plugged into system-config-securitylevel or whatever it is we use to manage the firewall locally these days.
Well, we won't script it then.
Just because it is enabled on the router doesn't mean that we should preconfigure applications to exploit it. Bad call.
It's a low risk feature that adds signficant ease of use for the user. You haven't shown at all how it could be exploited.
Sean