Disabling firewalld on AWS?
Eric V. Smith
eric at trueblade.com
Wed Sep 11 14:17:03 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
On 09/11/2013 08:57 AM, Daniel J Walsh wrote:
> On 09/11/2013 08:53 AM, Sam Kottler wrote:
>>> It's not "disabl[ing] security", security groups already do
>>> that for you. You're adding an extra convoluted layer, and the
>>> vast majority of users will just disable it and rely on
>>> security groups (that's conjecture on my part). Have you ever
>>> heard about vulnerabilities in the AWS security group
>>> implementation? I haven't.
> I would figure Amazon would do everything in its power to prevent
> leakage of information about vulnerabilities to the public. Their
> stock price would take a large hit...
[I hope the quoting is correct there, but it looks odd to me.
Apologies if it's wrong.]
And, they may be under court order to not discuss their vulnerabilities!
But seriously: I'd rather this work the same way other Fedora
installations work. I don't have to enable the firewall when I install
from DVDs, and I'd like the same thing to apply to cloud images.
Otherwise I need to modify my post-install scripts to always enable
the firewall (or maybe conditionally do it, which is worse).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
-----END PGP SIGNATURE-----
More information about the cloud