On Thu, Oct 9, 2008 at 7:04 PM, Chuck Anderson <cra@xxxxxxx> wrote: > On Thu, Oct 09, 2008 at 06:55:52PM +0200, Valent Turkovic wrote: >> I also said that I'm a "above average desktop user" so you could also >> replace "I don't need" with "average desktop used doesn't need". >> >> I believe that services should be regarded with the same attitude as >> open ports on a firewall. Some long time ago all ports were open and >> only "bad ones" were open, now all are closed and only explicitly ones >> are opened. Also all security and administration Rad Hat guides say >> that all unnecessary services should be turned off, and only turned on >> if explicitly needed. > > Funny of you to bring this up and then suggest that the IPv6 firewall > should be *disabled* by default. Whether you know it or not, your > system is running IPv6. It is accessible via link-local at the very > least, and if you happen to roam to a network that provides IPv6, you > will get global connectivity. Eventually I hope to have Fedora on par > with other operating systems, and provide Teredo functionality [1] by > default, which means automatic tunneled IPv6 global connectivity by > default, even behind NATs. ip6tables is important to have on by > default now, and will only become more so important over time. I know that no network I access has IPv6. No ADSL carrier in Croatia uses IPv6, my company doesn't use IPv6, and I in my home network I don't use IPv6. Valent. -- http://kernelreloaded.blog385.com/ linux, blog, anime, spirituality, windsurf, wireless registered as user #367004 with the Linux Counter, http://counter.li.org. ICQ: 2125241, Skype: valent.turkovic -- fedora-devel-list mailing list fedora-devel-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-devel-list
