[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: FC5 iptables issue



On Thu, 2006-03-23 at 17:50 -0500, Scot L. Harris wrote:
> I understand that if there is not a service listening on the ports
> that are open the risk is minimized.

It's the other way around.  Not listening to a port has zero risks.  A
firewall can minimises a risk if there's something there, but a firewall
won't absolutely protect you, and does absolutely nothing if there isn't
anything to receive a connection anyway.  It's got to an order of
magnitude harder to get something onto a box that will create a risk.
And if they can get something onto the box, all the firewalling in the
world is going to be moot.

-- 
Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]