this post was submitted on 25 Nov 2023
1490 points (97.9% liked)
linuxmemes
21263 readers
837 users here now
Hint: :q!
Sister communities:
- LemmyMemes: Memes
- LemmyShitpost: Anything and everything goes.
- RISA: Star Trek memes and shitposts
Community rules (click to expand)
1. Follow the site-wide rules
- Instance-wide TOS: https://legal.lemmy.world/tos/
- Lemmy code of conduct: https://join-lemmy.org/docs/code_of_conduct.html
2. Be civil
- Understand the difference between a joke and an insult.
- Do not harrass or attack members of the community for any reason.
- Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
- Bigotry will not be tolerated.
- These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
3. Post Linux-related content
- Including Unix and BSD.
- Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of
sudo
in Windows. - No porn. Even if you watch it on a Linux machine.
4. No recent reposts
- Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.
Please report posts and comments that break these rules!
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
For everything? You still shouldnt be running all ports open around. As it would ease the work of hackers getting backdoor access.
So just close the ports (or more precise: Do not open them, as "closed" is the default for most software on Linux).
Yup, and if some bad software wants to create malicious webserver they can not do it as all the ports that are open are used in a legit way. And thus can not really communicate either one or the other way.
A webserver listens on port 80 or 443. Neither port can be claimed by a normal user (no port below 1024 can). But yes if you manage more than your own user on a desktop AND these other users are not allowed to start programs on their own THEN a firewall can be helpful; but this is not a normal situation for a desktop-client, isn’t it?