On Fri, Jan 20, 2006 at 03:10:32PM +0100, Jurgen Kramer wrote: > I noticed that with FC5t2 the iptables firewall still has the -j REJECT > --reject-with icmp-host-prohibited rule instead of a more secure -j > DROP. It isn't really much more secure and the drop behaviour would stop it working out of the box for some users and environments. The goal for any automatic firewalling setup has to be that users never feel it causes problems, or they may just turn it off. Technical users can install more advanced firewall tools like firestarter Alan -- fedora-test-list mailing list fedora-test-list@xxxxxxxxxx To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-test-list