8
votes
|
|
21
0
13
|
|
|
|
|
Propose your solution
Attachments
No attachments.
Duplicates
Comments
|
|
Ubuntu have a firewall, to enable it, open a terminal and type;
sudo ufw enable
Done.
|
|
peterjs
wrote on the 26 Apr 08 at 19:04
|
|
|
Ubuntu is secure out of the box, no firewall configuration is the safe and proper default configuration. You don't need a firewall, with no network services in the base install there is nothing for a firewall to protect.
People have been co
|
|
peterjs
wrote on the 26 Apr 08 at 19:05
|
|
|
|
People have been conditioned to need a firewall, but that is blatantly false. You only need a firewall if you expose network services, which Ubuntu does not do by default.
|
|
El_Tate
wrote on the 26 Apr 08 at 20:40
|
|
|
How about when i need to open a port for aMule or Transmission?. How can i do that if i don't have firestarter?
Thx.
|
|
Rinzwind
wrote on the 26 Apr 08 at 21:21
|
|
|
El_Tate: you set those in your router. Routing should be done by a router (hence the name ;) ).
Again I repeat what peterjs said: this is LINUX not Windows.
Unix (and later on Linux) was built to be a multi-user system where one user is allowed to do more than another user. The internet is just full with users that are not allowed to do anything on our machines.
|
|
mnicky
wrote on the 28 Apr 08 at 09:51
|
|
|
|
Sorry, as I'm still using Gutsy, which don't have ufw, I didn't know that something like that has already been implemented into Hardy. But still I think that Firestarter is more newbie-friendly. OK it has about 2MBs....
|
|
peterjs
wrote on the 29 Apr 08 at 04:34
|
|
|
|
Friendliness is not a factor. You could create the prefectly friendly firewall tomorrow, you could get everyone in the world to agree that it was the most friendly application ever written. That still would not change the fact that a firewall is not necessary in the base Ubuntu install. Security is a mindset and a process, not doing dumb things will keep you far safer than any software you could ever install.
|
|
|
I disagree that this is a dup of #7889 but anyway...
@peterjs you are quite simply wrong that Ubuntu does not need a firewall. Anyway it is impossible to not install a firewall with Linux, because the functionality is built into the kernel. I believe it is actually possible to manipulate the tables through /proc, although it is somewhat arduous.
@Rinzwind: You set those in your router? Lots of people don't have one! First, every modem user including cellular users. Second, anyone using PPPoE to a very stupid modem. There's lots of those. Third, anyone with an internal CM, ISDN, or DSL interface.
The reason you need a firewall is that security holes happen. Sad but true. A remote root vulnerability isn't effectively a vulnerability if you can't contact the host. There have definitely been remote root holes in Ubuntu, they tend to be patched quickly but you can't guarantee that users will update frequently.
Also, there HAS been a remote root hole in the Linux kernel that was accessible even without running any services, an attack against the IP stack itself. Believing that such things don't happen is naive in the extreme.
To not firewall in the base install is a huge mistake.
|
Post your comment
|
