[opensuse-factory] Firewall Configuration - Allowed Services List
Why in the Service to Allow List are not listed HTTP and HTTPS ? I know this is really a minor thing, and it is possible to allow it by adding the ports in the advance section. For the other hand, are this two services allowed by default ? If so, what if I want to block them? -- Kind Regards --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gabriel napsal(a): | Why in the Service to Allow List are not listed HTTP and HTTPS ? | I know this is really a minor thing, and it is possible to allow it by | adding the ports in the advance section. Because firewall definitions for HTTP and HTTPS are part of the apache2 package. Install it and rerun the YaST Firewall. Of course, if there is some other package providing HTTP/S server but doesn't make firewall offer to allow it (or HTTP/S), please, file an enhancement request for that package. For more information, see http://en.opensuse.org/SuSEfirewall2/Service_Definitions_Added_via_Packages | For the other hand, are this two services allowed by default ? If so, | what if I want to block them? No, no service is allowed by default. Bye Lukas -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFIE3cHVSqMdRCqTiwRAtt4AKCD/k3QfOPX99eheMWiWdbFVrsTSwCgmQ5+ o1VeYVv+JzDvbz4riYb6VYo= =c8bJ -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org
On Sat, Apr 26, 2008 at 3:40 PM, Lukas Ocilka <lukas.ocilka@suse.cz> wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Gabriel napsal(a):
| Why in the Service to Allow List are not listed HTTP and HTTPS ? | I know this is really a minor thing, and it is possible to allow it by | adding the ports in the advance section.
Because firewall definitions for HTTP and HTTPS are part of the apache2 package. Install it and rerun the YaST Firewall.
Great. Now appears as apache2 and apache2 ssl.
Of course, if there is some other package providing HTTP/S server but doesn't make firewall offer to allow it (or HTTP/S), please, file an enhancement request for that package.
For more information, see http://en.opensuse.org/SuSEfirewall2/Service_Definitions_Added_via_Packages
Will check.
| For the other hand, are this two services allowed by default ? If so, | what if I want to block them?
No, no service is allowed by default.
Ok, perfect. I thanks for the quick reply.
Bye Lukas -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org
iD8DBQFIE3cHVSqMdRCqTiwRAtt4AKCD/k3QfOPX99eheMWiWdbFVrsTSwCgmQ5+ o1VeYVv+JzDvbz4riYb6VYo= =c8bJ -----END PGP SIGNATURE-----
-- Kind Regards --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org
participants (2)
-
Gabriel -
Lukas Ocilka