Am Mittwoch, den 02.04.2008, 17:49 +0200 schrieb Markus Schönhaber:
> As Oliver said: Ubuntu's default install is very secure in the sense
> that it only accepts network packets which are replies to packets you've
> actively sent (for example the response packets from a web server you
> requested a web page from). All others are rejected.
> And this is achieved without any packet filter rules but by not
> installing any service that actively accepts new requests from the
> network - and then letting the network stack do it's work.
> In case you wonder: All those vendors of "personal firewalls" for
> Windows don't sell security. They sell a warm and cosy feeling.
hey, but they made a fortune telling people they need local packet
filters to save you from DoS attacks (where a script thats just
refreshing your IP would surely be cleverer and more effective) and made
the word firewall an elastic term to match everything that sees network
packages passing by from a distance
local packet filters are moot as long as you know what you are doing and
what kind of server software you installed ... they might be helpful if
you dont, but then you need to gain the knowledge about your packet
filter to not misconfigure it and rip even bigger holes in the system
than any apps you install could open.
my advise would always be, keep an eye on the list of server apps you
install and know (or find out by looking at the config and shipped docs,
its linux after all
) what system defaults they are changing ...
... or subscribe to the next firewalling lesson in your local adult
ubuntu-users mailing list
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users