Re: Fedora default services (was: Re: F15 Feature - convert as many service init files as possible to the native SystemD services)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Chris Adams wrote:
> The only thing you need a firewall by default for is to prevent services
> that are listening on the network from being accessible.  The better
> solution is to stop having services listen on the network by default.

FWIW, this is what Ubuntu has been doing for ages (they call it "zero open 
ports policy"), and AFAIK they do not enable iptables by default because of 
this.

That said, "zero open ports" also got complaints, e.g. because they disabled 
the CUPS web-based configuration interface to close port 631.

        Kevin Kofler

-- 
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux