Firewall blocking desktop features

Pierre-Yves Chibon pingou at
Thu Sep 12 06:25:21 UTC 2013

> Application should request the ports to be opened and the firewalld
> layer should then confirm with the user stating which ports and
> which app requested said ports.  The app can't lie if the firewall
> layer is the one asking for confirmation.

But a malicious app can pretend to be another one, unless there is a way for the
firewall to know which app is asking in a way that cannot be forged.


More information about the devel mailing list