Re: Why not have firewall rules by default?

To: debian-security@lists.debian.org
Subject: Re: Why not have firewall rules by default?
From: "Thomas Damgaard" <thomasdn@gmail.com>
Date: Wed, 23 Jan 2008 16:37:15 +0100
Message-id: <[🔎] 568d7eff0801230737q41a2d1e0jd796bbd6a1c46a49@mail.gmail.com>
In-reply-to: <[🔎] 47975AE5.80801@gmail.com>
References: <[🔎] 47975AE5.80801@gmail.com>

On Jan 23, 2008 4:19 PM, William Twomey <william.twomey@gmail.com> wrote:
> One solution could be to have a folder called /etc/security/iptables
> that contains files that get passed to iptables at startup (in the same
> way /etc/rc2.d gets read in numeric order). So you could have files like
> 22ssh, 23ftp, etc. with iptable rules in each file. You could also have
> an 'ENABLED' variable like some files in /etc/default have (so that
> ports wouldn't be opened by default; the user would have to manually
> enable them for the port to be opened).
>
>  Then they'd just run /etc/init.d/iptables restart and the port would be
> opened (flush the rules, reapply).

I think this would be a great feature!


-- 
Med venlig hilsen/Kind regards
Thomas Damgaard Nielsen
http://thomasdamgaard.dk

Reply to:

References:
- Why not have firewall rules by default?
  - From: William Twomey <william.twomey@gmail.com>

Prev by Date: Why not have firewall rules by default?
Next by Date: Re: Why not have firewall rules by default?
Previous by thread: Why not have firewall rules by default?
Next by thread: Re: Why not have firewall rules by default?
Index(es):
- Date
- Thread