Tim: >> To a large degree, a Windows box is protected from the internet by >> NAT in the router, ... Dave Ihnat: > NAT is not a security protection. At best it's obfuscation. Yes, I know. Poor choice of words, on my behalf. It's somewhat buffered, in that NAT often gets in the way. But it's not meant to keep things out, so any expectation that it will, is bad thinking. I've even come across modem/routers that go out of their way to help outside connections come through their NAT to the other side. The idea being to make it easier for less savvy users to still be able to play games, do their VOIPing, etc. > And if someone comes into a LAN via it's WAP, they're on the _inside_, > so NAT doesn't apply, and they're behind the router border firewall > (if any). My point was, Windows users (who, typically, don't know much about what they're doing - let's face it, there's hundreds of thousands of non-technical users), have kind-of gotten used to being somewhat protected from outside disturbances by their modem/routers, unlike how their old modems offered no isolation, now have something behind that not very tangible barrier, as another easy way in. Firewalls made of rice paper... -- [tim@localhost ~]$ uname -r 2.6.27.25-78.2.56.fc9.i686 Don't send private replies to my address, the mailbox is ignored. I read messages from the public lists. -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
