Am 15.04.2014 18:13, schrieb Andrew Lutomirski: > On Tue, Apr 15, 2014 at 9:04 AM, Christopher <ctubbsii@xxxxxxxxxx> wrote: >> Ideally, users would have complete knowledge of the behavior of every >> piece of software in their system that utilizes the network, in which >> case, they could very easily get by without a firewall. However, that >> is not a reasonable expectation. A firewall protects users with >> incomplete knowledge of their software. >> >> Example: user installs software X... but oops, they didn't realize it >> was going to listen on port Y.... but that's okay, because no firewall >> rule has been enabled to allow traffic on port Y, so the user is >> secure. > > This sounds like a problem that should be separately fixed please stop to talk about security because your argumentation shows that you are clueless at this topic - you can't fix all problems in every application damend it is enough to have a sane and secure application listening on a public reachable port after a until now unknown security flaw was found, in the worst case combined with privilege escalation
Attachment:
signature.asc
Description: OpenPGP digital signature
-- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
