FirewallBuddy
Thiago Macieira
thiago at kde.org
Mon Feb 16 18:13:50 GMT 2009
Em Domingo 15 Fevereiro 2009, às 05:19:47, Tejas Dinkar escreveu:
> The 'bug' I want to address is that when applications open a port (such
> as a file sharing app), the application thinks that everything is good,
> while IPTables is secretly blocking everything in an out of the system.
> Oops.
Wouldn't that be intentional then?
I think we shouldn't provide an API for this. If the system is firewalled, it's
for a good reason. If you have an interactive firewall, you'll find out that
there are connection attempts going on, which means you may want to open the
port.
However, if you don't want to open the port, you're safe in knowing programs
will not do it behind your back.
(I know this requires a root password, but it's better to rely on the
interactive firewall instead)
What's more, the big problem users face today is not the firewall on their
machines, but the fact that they are behind NAT and a firewall server.
--
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
Senior Product Manager - Nokia, Qt Software
PGP/GPG: 0x6EF45358; fingerprint:
E067 918B B660 DBD1 105C 966C 33F5 F005 6EF4 5358
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20090216/39e61e11/attachment.sig>
More information about the kde-core-devel
mailing list