Re: Firewall confusion
- From: Stephen Horne <sh006d3592@xxxxxxxxxxxxxxxx>
- Date: Mon, 28 Dec 2009 12:44:42 +0000
On Mon, 28 Dec 2009 13:11:43 +0100, houghi <houghi@xxxxxxxxxxxxxxxxxx>
wrote:
Stephen Horne wrote:
Just for the record, though, which of the following would your little
sister be better equipped to cope with...
1. Answering "Thunderbird wants internet access - yes or no?"
2. Configuring the OpenSUSE firewall.
Neither. System access should NOT be done on a user level. Not by me
and not by my little sister.
To me there is a HUGE difference between "Me, the user" and "Me, the
system administrator"
And this means that you can never decide which applications should be
allowed to access the internet, irrespective of which hat you happen
to be wearing?
Why?
I repeat - I'm not asking to clone ZoneAlarm or the Windows way. I
just want to prevent applications from accessing the internet without
my explicit permission. I'm quite happy to make those whitelisting
decisions while wearing my system admin hat, and I agree that it's a
necessity for the thing to really be secure.
But even if blocking/unblocking internet access was done with no admin
password needed, as is generally the case on home Windows boxes, it's
still more secure than *always* allowing *all* applications to access
the internet.
.
- Follow-Ups:
- Re: Firewall confusion
- From: David Bolt
- Re: Firewall confusion
- From: Peter Köhlmann
- Re: Firewall confusion
- References:
- Firewall confusion
- From: Stephen Horne
- Re: Firewall confusion
- From: Stephen Horne
- Firewall confusion
- Prev by Date: Re: Firewall confusion
- Next by Date: Re: Firewall confusion
- Previous by thread: Re: Firewall confusion
- Next by thread: Re: Firewall confusion
- Index(es):
Relevant Pages
|
