[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: firewall changes for F-9+

From: Adam Tkac <atkac redhat com>
To: Development discussions related to Fedora <fedora-devel-list redhat com>
Subject: Re: firewall changes for F-9+
Date: Thu, 17 Jan 2008 14:12:11 +0100

On Thu, Jan 17, 2008 at 12:07:52AM +0000, Bastien Nocera wrote:
> 
> On Wed, 2008-01-16 at 18:52 +0100, Thomas Woerner wrote:
> > Hello,
> > 
> > here are the latest changes for system-config-firewall for F-9+:
> > 
> > The usage of --port=<port>:<proto> for lokkit will open up this port and 
> > not a service using this port anymore. To enable a service you have to 
> > use the new --service=<name> option. There are no magic default open 
> > services. You have to open up the services, you want to use. The interim 
> > options --no-X; X in ["ipsec", "mdns", "ipp"] are obsolete now.
> > 
> > To setup a new firewall, you can use the new --default=<name> 
> > configuration option as a start:
> >    server  : ssh is enabled
> >    desktop : ipsec, mdns and ipp are enabled
> 
> IpSec and IPP as services don't sound very much like desktop
> applications.
> 

Definitely. Also mdns enabled on desktop doesn't make sence for me. I
think only ssh will be enabled on both server and desktop.

Adam

-- 
Adam Tkac, Red Hat, Inc.

Follow-Ups:
- Re: firewall changes for F-9+
  - From: Tim Niemueller

References:
- firewall changes for F-9+
  - From: Thomas Woerner
- Re: firewall changes for F-9+
  - From: Bastien Nocera

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]