FIREWALL STUFF
Jean-François Gagnon Laporte
kioshen at gmail.com
Thu Feb 22 15:10:13 UTC 2007
On 2/22/07, Maurice Murphy <m1625 at rogers.com> wrote:
> So I guess the best I can do is to
> hide behind my password protected router and pray for better news!
>
Firewalls are so overrated these days it's starting to be less funny
to watch. Since you are behind a NAT router, the only thing left would
be to change it's default password like Alfred suggested, disable
remote administration over the WAN interface and only allow if
possible local administration over https.
As for your personnal workstation, I guess the only thing you are
doing over the network is sharing files with another Windows computer
and printing right ? If so you won't really need a firewall as the
CUPS (printing framework) admin page is available only over localhost
in Ubuntu and since you are behind a NAT router your smb traffic won't
get over the internet.
If you are doing something else over the network that my assumptions
missed let me know since I could have more recommendations. Just make
sure you are keeping up to date with the security updates and you will
be fine.
Don't get me wrong I have firewalls for our corporate servers and the
ones I have at home. It is also mandatory to have a firewall on a
Windows workstation because of bad design/philosophy. But for a Ubuntu
system that has a "no ports open by default" philosophy, you have way
more chances to be victim of phishing or from a badly configured ssh
server (remote console connection) no matter how many layers of
firewall you have.
Regards,
JF
> Thanks again for the suggestions,
>
> Maurice
>
>
> --
> ubuntu-ca mailing list
> ubuntu-ca at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/ubuntu-ca
>
More information about the ubuntu-ca
mailing list