Any danger from these ports?

Luciano Miguel Ferreira Rocha strange at nsk.no-ip.org
Mon Jan 10 16:59:46 UTC 2005


On Mon, Jan 10, 2005 at 11:35:03AM -0500, Jeff Spaleta wrote:
> On Mon, 10 Jan 2005 15:49:56 +0000, Luciano Miguel Ferreira Rocha 
> > Not a default for servers, surely?
> 
> In my mind, i think its perfectly acceptible that any 'server'  would
> be required to change the firewall settings from the non-default as
> part of its configuration.  The default firewall rules don't allow
> most services from being seen from clients already. Is http allowed
> through by default in fedora's firewall or do you have to configure
> the firewall to let it through?
> If the securitylevel tool included the ability to disable the default
> ipt_recent ruleset wouldn't that be enough to satify server
> configuration needs?

Yes, along with:
> If this were a check-box in the
> firewall/securitylevel setup pane during install or firstboot would
> that be too heavy a burden?

The feature is nice, and I have no problem with it if a visible option
to turn it off is visible during installation, mentioning it's
unsuitable for server operation.

Regards,
Luciano Rocha

-- 
Consciousness: that annoying time between naps.




More information about the test mailing list