Web lists-archives.com

Re: Why does Debian allow all incoming traffic by default

On Sat, Sep 22, 2018 at 05:12:38AM -0400, Gene Heskett wrote:
Because you can set an ntp corrected machine as a broadcaster, therefore
reducing the load on the tier 2 servers such as debian maintains by
using their pool.debian.org or the tier 1 servers at pool.ntp.org. That
way I have 7 machines here, all synchronized to the first or 2nd tier of
time servers on the planet. This machine is a slave to my router, it
broadcasts to the other 6 machines, so I have all synched and well
within a millisecond.

You certainly can, but is that really a use-case that a hypothetical
default firewall should service? I don't think so. If you are setting
such a thing up you should be expected to punch the requisite holes in
the default firewall as part of that work.


⣾⠁⢠⠒⠀⣿⡁ Jonathan Dowland
⢿⡄⠘⠷⠚⠋⠀ https://jmtd.net
⠈⠳⣄⠀⠀⠀⠀ Please do not CC me, I am subscribed to the list.