Web lists-archives.com

Re: Why does Debian allow all incoming traffic by default




Roberto C. Sánchez wrote:

> I suspect that the vast majority of people deploying systems are doing
> so behind some sort of device that provides border security to the local
> network (e.g., router/firewall/NAT/etc.).  So, if the default threat
> model is "a relatively trusted network with adequate border security"
> then the current default is appropriate.

I agree completely. The default policy in RedHat or CentOS is annoying. I
have to disable those every time after installation.