About F19 Firewall
Nicolas Mailhot
nicolas.mailhot at laposte.net
Tue Sep 17 10:31:00 UTC 2013
Le Mar 17 septembre 2013 11:33, Björn Persson a écrit :
> Mateusz Marzantowicz wrote:
>>Wireless networks have unique "names" and are represented as different
>>connections on NetworkManager (network connection != interface). For
>>network named "MyHomeNet" one can associate Home zone in NetworkManager
>>and for network "CoffeShowHotSpot" one assigns Public zone. You don't
>>have to change anything once it's assigned.
>
> So when some innocent-looking guy is sitting in the café with a
> smartphone posing as an access point with an SSID of "MyHomeNet", will
> your Fedora laptop connect to it, switch to the Home zone, and assume
> that everybody on that network is friendly?
Does not matter if the firewall rules become complex enough no one will
ever audit them and they become the malware-ridden black-boxes common in
windows environments.
(though systemd and gnome3 are taking the 'pile of overengineered rules no
one checks' route fast)
--
Nicolas Mailhot
More information about the devel
mailing list