Mailinglist Archive: opensuse-factory (808 mails)
| < Previous | Next > |
Re: [opensuse-factory] Integration of firewalld?
- From: Johannes Meixner <jsmeix@xxxxxxx>
- Date: Tue, 2 Aug 2011 10:16:14 +0200 (CEST)
- Message-id: <alpine.LNX.2.00.1108021007470.19578@nelson.suse.de>
Hello,
On Aug 1 14:18 Vincent Untz wrote (excerpt):
For instance, when configuring printers, the tool can open the mdns,
ipp, ipp-client and samba-client ports for 5 minutes and probe the
network (ports will get closed after the 5 minutes). And if the user
chooses to use a printer using one of those ports, the tool will
permanently open the port.
What is the security concept behind this?
In other words:
Why is it secure to remove security for 5 minutes?
Why is it secure to remove security permanently for particular stuff?
The above are not meant as rhetorical questions.
I am really interested in a security concept behind such cases.
For information what I have in mind, please read
http://en.opensuse.org/SDB:CUPS_and_SANE_Firewall_settings
Kind Regards
Johannes Meixner
--
SUSE LINUX Products GmbH -- Maxfeldstrasse 5 -- 90409 Nuernberg -- Germany
HRB 16746 (AG Nuernberg) GF: Jeff Hawn, Jennifer Guild, Felix Imendoerffer
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-factory+help@xxxxxxxxxxxx
| < Previous | Next > |