"Workstation" Product defaults to wide-open firewall

Kevin Kofler kevin.kofler at chello.at
Tue Dec 9 00:35:05 UTC 2014

Alec Leamas wrote:
> Tracking this issue back we find [1] where the workstation group  tried
> to just disable the firewall. This started some threads. FESCO rejected
> the change request.
> For me, this issue then disappeared from my radar. It seems that after
> FESCO turned down the wide-open system option the discussion was in the
> workstation list, where they ended up opening all user ports (?) and
> implemented this.

To me, it is obvious that the Workstation WG is in deliberate contempt of
FESCo's decision. That alone ought to lead to sanctions from FESCo. In
addition, FESCo's decision must be implemented properly by a security update
ASAP. A wide-open firewall is a security issue. We CANNOT leave it unfixed.
(For a precedent, where a deliberate security hole was forced to be closed
in an update, see the Fedora 12 PackageKit policy fiasco:
https://www.redhat.com/archives/fedora-devel-list/2009-November/msg00926.html )

        Kevin Kofler

More information about the devel mailing list