On 4/30/2013 9:22 AM, Anton Aylward wrote:
Now when it comes down to single home machines plugged directly into the Big Bad Wild Internet, yes I agree, they need the firewall ON! That was the great problem with the old Windows machines and the source of so many of the problems that persist to this day.
But Linux isn't windows, and if you know and control exactly what services/ports you have open to the wild woolly world there is no need of a firewall. After all a firewall is usually nothing but a sloppy way of controlling what ports you expose. A closed port is about as secure as it gets. The number of ssh vulnerabilities that can be remotely exploited is vanishingly small and short lived. Disable password login via ssh after you key your public keys installed and the script kiddies can try for years. -- _____________________________________ ---This space for rent--- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org