Mailinglist Archive: opensuse (3100 mails)
| < Previous | Next > |
Re: [SLE] SUSE Firewall not like ZoneAlarm...
- From: Anders Johansson <andjoh@xxxxxxxxxx>
- Date: Sun, 12 Mar 2006 21:36:11 +0100
- Message-id: <200603122136.11490.andjoh@xxxxxxxxxx>
On Friday 10 March 2006 18:05, Daniel Bauer wrote:
> As much as I understand it (and I don't understand very much :-) ) the
> SUSE-firewall doesn't care abaout which application is using a specific
> port, so in my opinion it could easily be possible for a maleficent program
> to get an internet connection.
maleficient? Please tell me you got that from babelfish :)
Yes it's easy for a program to get internet access in linux, SuSEfirewall2
won't block outgoing connections by default. If you worry about these things,
you might want to look at AppArmor, which is included by default in 10.0 and
can block much more than just network access
zonealarm isn't exactly the solution. It's not too difficult to defeat, so the
only thing you get from it is a false sense of security. If you're worried
about outgoing connections, the only real solution is to only run software
you trust.
--
Certified: Yes. Certifiable: of course!
jabber ID: anders@xxxxxxxxxx
> As much as I understand it (and I don't understand very much :-) ) the
> SUSE-firewall doesn't care abaout which application is using a specific
> port, so in my opinion it could easily be possible for a maleficent program
> to get an internet connection.
maleficient? Please tell me you got that from babelfish :)
Yes it's easy for a program to get internet access in linux, SuSEfirewall2
won't block outgoing connections by default. If you worry about these things,
you might want to look at AppArmor, which is included by default in 10.0 and
can block much more than just network access
zonealarm isn't exactly the solution. It's not too difficult to defeat, so the
only thing you get from it is a false sense of security. If you're worried
about outgoing connections, the only real solution is to only run software
you trust.
--
Certified: Yes. Certifiable: of course!
jabber ID: anders@xxxxxxxxxx
| < Previous | Next > |