Am 08.12.2014 um 07:41 schrieb Kevin Kofler:
I just happened to look at the firewalld default settings, and I was not amused when I noticed this: http://pkgs.fedoraproject.org/cgit/firewalld.git/tree/FedoraWorkstation.xml<port protocol="udp" port="1025-65535"/> <port protocol="tcp" port="1025-65535"/>This "firewall" is a joke! ALL higher ports are wide open!
seriously?how was i attacked as i called it repeatly not smart even consider lower the default security..... a ton of services are listening on high ports these days and *incoming* the only needed rule is:
ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
signature.asc
Description: OpenPGP digital signature
-- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
