Subject: follow up: no smb network access

Tom 'Needs A Hat' Mitchell mitch48 at sbcglobal.net
Wed May 12 18:34:59 UTC 2004


On Tue, May 11, 2004 at 08:05:44PM +1000, Ben Stringer wrote:
> On Tue, 2004-05-11 at 19:27, Florian Idelberger wrote:
> > Is there a standard firewall in fedora? If yes, how to turn it off?
> > I don't need because I'm behind a big proxy with a firewall.
> 
> redhat-config-securitylevel

Just because you are behind a big firewall does
not mean that you should not enable a local firewall.

It is true that when debugging things a firewall can add complexity
and turning it off is helpful in clearing up a problem.  However once
the problem is cleared up it is good to revisit local firewall
settings.

The current set of virus/worms are exploiting common network services
on WindowZ machines (i.e. open ports).  Should a like problem be
discovered in a Linux service then your open ports could be an issue.
Understanding how to lock things down is good.  Having unneeded
services already locked down is simply good style.

A buzz this week is that a big firewall router company has had enough
security issues exploited that some consider that they are in the same
bad boy boat that MS is in with regard to security.

Fix your problem then revisit redhat-config-securitylevel and iptables
etc to tighten up the box.


-- 
	T o m  M i t c h e l l 
	/dev/null the ultimate in secure storage.





More information about the fedora-list mailing list