Re: Why does Debian allow all incoming traffic by default
Roberto C. Sánchez wrote:
> I suspect that the vast majority of people deploying systems are doing
> so behind some sort of device that provides border security to the local
> network (e.g., router/firewall/NAT/etc.). So, if the default threat
> model is "a relatively trusted network with adequate border security"
> then the current default is appropriate.
I agree completely. The default policy in RedHat or CentOS is annoying. I
have to disable those every time after installation.