On Mon, Jan 10, 2005 at 11:35:03AM -0500, Jeff Spaleta wrote: > On Mon, 10 Jan 2005 15:49:56 +0000, Luciano Miguel Ferreira Rocha > > Not a default for servers, surely? > > In my mind, i think its perfectly acceptible that any 'server' would > be required to change the firewall settings from the non-default as > part of its configuration. The default firewall rules don't allow > most services from being seen from clients already. Is http allowed > through by default in fedora's firewall or do you have to configure > the firewall to let it through? > If the securitylevel tool included the ability to disable the default > ipt_recent ruleset wouldn't that be enough to satify server > configuration needs? Yes, along with: > If this were a check-box in the > firewall/securitylevel setup pane during install or firstboot would > that be too heavy a burden? The feature is nice, and I have no problem with it if a visible option to turn it off is visible during installation, mentioning it's unsuitable for server operation. Regards, Luciano Rocha -- Consciousness: that annoying time between naps.