On 2023-05-02 13:02, Per Jessen wrote:
Carlos E. R. wrote:
On 2023-05-02 12:24, Per Jessen wrote:
Carlos E. R. wrote:
On 2023-05-02 08:44, Per Jessen wrote:
Carlos E. R. wrote: I find the idea of not running it intriguing and naive.
Carlos, instead of snide remarks, why don't you list the reasons for using a firewall on a trusted network.
Sorry, it is not a snide remark. It is simply how I see things.
Maybe I just need to grow some thicker skin, but calling me naive ...
Not intended as name calling or offensive, sorry.
I can not understand not running firewalls in all machines.
Yet you seem unable or (even unwilling?) to explain your reasons for doing so, on a trusted network.
Because to me it is the natural thing to do. It is you who should explain why not!
In stark contrast, I am perfectly happy to explain why I don't and never have - because "all machines" on my trusted network are trusted. If they weren't, the network wouldn't be trusted.
Any machine can eventually go rogue. In an enterprise environment, most successful attacks come from inside. Obviously, if most of them think the same way, not running firewalls inside, that explain why attacks succeed that easy.
Local machines that I do not trust (usually because they are outside my control) are on a reduced trust network. For instance, all of my son's machines (Windows for gaming, Macbook for work, misc. Nintendos, mobiles and whathaveyou). IoTs, washing machines, hoovers, coffee machines etc are also all separate. I have more separate networks, but that'll do for now.
Well, instead of having a separate network (I don't have the hardware for that), I use firewalls.
It is the quintessential idea of firewalling - there are trusted and there are untrusted networks. Usually also some semi-trusted networks, like above. Sometimes there are networks you want to keep separate for other reasons, even if they are both trusted.
I have been using NFS for decades across a firewall on each computer, no issues. Works fine with SuSEfirewall2.
Does in no way imply it was the right thing to do. My late mum smoked a couple of packets of cigarettes every day for decades, no issues.
Oh, yes, it is the right thing to do. Your example is against the law.
Huh? my late mum was smoking illegally ? :-) I presume that is not what you meant, but what else is against the law?
Smoking is against doctor laws, and otherwise it is illegal in many places.
What are "doctor laws" ? Anyway, it was never a problem for my mum, she mostly smoked at home. (has this gone wayyyyy off topic?)
My doctor says something akin to "do not smoke, or else." :-P I have always obeyed. -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)