2010/5/6 Rudolf Kastl <che666@xxxxxxxxx>: > 2010/5/6 Christoph Wickert <christoph.wickert@xxxxxxxxxxxxxx>: >> Am Dienstag, den 04.05.2010, 23:54 +0100 schrieb Bastien Nocera: >> >>> We really only block incoming communications right now, and it's >>> probably as much of a security risk as opening all the ports, as far as >>> I'm concerned. >> >> Why is closing ports a security risk? > > you understood it wrongly... actually only filtering incoming ports is > a one sided thing. a real firewall setup filters both direction. > turning filtering off completly though is even for a desktop a touch i meant tough of course. *slowly wakes up* > decision. there are still people who do not have a nat router but are > connected to the net directly. and filtering off by default will be a > security issue for their desktops... i am curious what argumentation > chain will come up to disable filtering completly by default and how > it doesent help those users in having a more secure box by default, > even if they turn on some services for virtual machines or other > crosslinked boxes. lets see. > > kind regards, > Rudolf Kastl > rhce rhca rhcss rhcx > >> >> Regards, >> Christoph >> >> -- >> desktop mailing list >> desktop@xxxxxxxxxxxxxxxxxxxxxxx >> https://admin.fedoraproject.org/mailman/listinfo/desktop >> > -- desktop mailing list desktop@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/desktop
