Re: Why does Debian allow all incoming traffic by default

To: debian-user@lists.debian.org
Subject: Re: Why does Debian allow all incoming traffic by default
From: songbird <songbird@anthive.com>
Date: Fri, 21 Sep 2018 18:04:59 -0400
Message-id: <[🔎] bh6g7f-m69.ln1@anthive.com>
Reply-to: songbird <songbird@anthive.com>
References: <[🔎] da96e6a3-ac34-8d4f-7784-4776e95aee5f@gmail.com>

Subhadip Ghosh wrote:
> Hi,
>
> I am using Debian and the recently I learned that a standard Debian 
> installation allows all 3 types of traffics especially incoming by 
> default. I know I can easily use iptables to tighten the rules but I 
> wanted to know the reasons behind the choice of this default behaviour 
> and if it makes the system more vulnerable? I tried searching on the 
> Internet but did not get any satisfactory explanation. It will be 
> helpful if anybody knows the answers to my questions or can redirect me 
> to a helpful document.

  whenever i install a new system i include ufw (a firewall
program) just to catch any funny stuff that might try to
come through.

  the default settings seem to work well enough and i'm glad
i don't have to relearn the terminology and rules for iptables.

  i'm sure a much better solution is to run a separate router
as it's own layer of firewall may keep a lot of stuff out, 
but as of yet i'm just not under attack enough to make it
worth it.

  songbird

Reply to:

Follow-Ups:
- Re: Why does Debian allow all incoming traffic by default
  - From: Joe <joe@jretrading.com>
- Re: Why does Debian allow all incoming traffic by default
  - From: Jonathan Dowland <jmtd@debian.org>

References:
- Why does Debian allow all incoming traffic by default
  - From: Subhadip Ghosh <subhadip.sky@gmail.com>

Prev by Date: Re: Why does Debian allow all incoming traffic by default
Next by Date: Re: libcurl3 and libcurl4
Previous by thread: Re: Why does Debian allow all incoming traffic by default
Next by thread: Re: Why does Debian allow all incoming traffic by default
Index(es):
- Date
- Thread