F19 Firewall
Matthew Miller
mattdm at mattdm.org
Thu Sep 26 14:40:00 UTC 2013
On Thu, Sep 26, 2013 at 04:00:03PM +0200, Miloslav Trmač wrote:
> It does; in my view the primary problem it fixes is iptables being at
> too low level of abstraction. The question "is port 22 open" can be
> only answered for itpables by interpreting a Turing-complete language.
Or as everyone does it: by testing if a connection can be made. And,
frankly, if that test passes, do we care what mechnism is enforcing it?
--
Matthew Miller mattdm at mattdm.org <http://mattdm.org/>
More information about the security
mailing list