On Tuesday, August 02, 2011 01:28:00 AM Johannes Meixner wrote:
Hello,
On Aug 1 16:42 Frederic Crozat wrote (excerpt):
We have several locations in Yast which states "you might need to lower / punch firewall for this autodetection to work".
I don't know the details but from my point of view each such location could be a security bug in YaST. I assume it depends on how excactly it is implemented whether or not YaST suggests (or even urges) that the user should remove his current protection.
It would be better for an usuability PoV for Yast to talk to the firewall and punch it just for the autodetection.
Punch the firewall is in almost any case wrong except you really want to set up a public accessible service.
From my point of view usability should not mean "just remove whatever protection to make it just work". In contrast usability should mean to guide the user towards a reasonable setup.
Kind Regards Johannes Meixner IF we were talking Windows I would agree. But considering how unlikely it is to have malicious software on a machine running openSUSE, punching may not be a bad idea. Or make it need the password before opening up. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org