2010/5/6 Christoph Wickert <christoph.wickert@xxxxxxxxxxxxxx>: > Am Dienstag, den 04.05.2010, 23:54 +0100 schrieb Bastien Nocera: > >> We really only block incoming communications right now, and it's >> probably as much of a security risk as opening all the ports, as far as >> I'm concerned. > > Why is closing ports a security risk? you understood it wrongly... actually only filtering incoming ports is a one sided thing. a real firewall setup filters both direction. turning filtering off completly though is even for a desktop a touch decision. there are still people who do not have a nat router but are connected to the net directly. and filtering off by default will be a security issue for their desktops... i am curious what argumentation chain will come up to disable filtering completly by default and how it doesent help those users in having a more secure box by default, even if they turn on some services for virtual machines or other crosslinked boxes. lets see. kind regards, Rudolf Kastl rhce rhca rhcss rhcx > > Regards, > Christoph > > -- > desktop mailing list > desktop@xxxxxxxxxxxxxxxxxxxxxxx > https://admin.fedoraproject.org/mailman/listinfo/desktop > -- desktop mailing list desktop@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/desktop
