On Sat, Nov 21, 2009 at 12:43 AM, John Andersen <jsamyth@gmail.com> wrote:
... until one day they turn off their firewall, because they read on some forum that's a likely cause for their programs not connecting. At which point they're not even aware they have some potentially vulnerable network services running. Or do they deserve whatever they get for disabling the firewall?
Really? You choose the _least exploitable_ service to raise that red herring?
1st, "least exploitable" is and will always be worse than "not f**king there to exploit at all". Also, it would be nice if Joe User kept his system up to date, but that's not always the case. It all boils down to the attack surface argument in the end. I think whether or not to replace Samba with SFTP/Fish is a different discussion altogether. 2nd, not a red herring, unless you believe that a) Joe User is anything but clueless, or b) clueless Joe User has no business using openSUSE on his home computer.
I never asked for postfix on this laptop, yet there it is listening on port 25 on ALL interfaces? What happens when I take down the firewall? Why is it listening on ALL interfaces when its only (stated) reason for being here is to service cron jobs?
I agree, i had my own OMGWTF moment when I discovered that on 10.x (can't really remember which one). This is why I was asking about it in the third post of this thread. Sorin -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org