Re: courier mail for Centos

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On 12/06/2012 10:49 AM, Giles Coochey wrote:
> On 06-12-2012 15:41, Les Mikesell wrote:
>> On Thu, Dec 6, 2012 at 9:13 AM,  <m.roth@xxxxxxxxx> wrote:
>>> Disabling selinux, or at least setting it to permissive, I agree
>>> with.
>>> Turning down your firewall?! Anyone suggesting that is, IMO, either
>>> a)
>>> clueless, or b) a malware user/vendor trying to make life easier.
>>> Can
>>> anyone think of any other possibilities?
>> Someone with good site and subnet-level hardware firewalling.  And a
>> good feeling that all the bad guys are on the other side of the
>> firewalls.
> Filtering Inbound Firewalls are generally useless if the user of the
> system doesn't know what they're doing. A lot of intrusions these days
> are the result of inbound policy permitted traffic in causing someone to
> initiate an outbound connection that gets them hacked.

Which is why you need to have your outbound also restricted.

But then the things that go over port 80 is sad. Port firewalls can help 
with that.


_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos


[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux