gufw-developers team mailing list archive
-
gufw-developers team
-
Mailing list archive
-
Message #01881
[Bug 1443203] [NEW] GUFW blocks all incoming VNC connections even if rules allow
*** This bug is a security vulnerability ***
Private security bug reported:
I am having a problem with GUFW. I have it set to block incoming
connections from everything. I then set rules to allow incoming
connections from a VNC client on my local network to a VMWare Player VNC
setup but no matter what I do with those rules, I cannot connect to the
VNC server on my machine unless I change the setting for my profile to
Allow for everything. Making and applying rules has no effect if the
"Incoming" setting at the top of the application is set to Deny or
Reject.
The only other option is to turn off the firewall entirely for a moment
for the VNC client to connect, and then turn it back on again once a
connection is established. Allowing all incoming connections for even a
few moments just to use VNC on one port is a security risk.
** Affects: gui-ufw
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Gufw
Developers, which is subscribed to Gufw.
https://bugs.launchpad.net/bugs/1443203
Title:
GUFW blocks all incoming VNC connections even if rules allow
Status in Gufw:
New
Bug description:
I am having a problem with GUFW. I have it set to block incoming
connections from everything. I then set rules to allow incoming
connections from a VNC client on my local network to a VMWare Player
VNC setup but no matter what I do with those rules, I cannot connect
to the VNC server on my machine unless I change the setting for my
profile to Allow for everything. Making and applying rules has no
effect if the "Incoming" setting at the top of the application is set
to Deny or Reject.
The only other option is to turn off the firewall entirely for a
moment for the VNC client to connect, and then turn it back on again
once a connection is established. Allowing all incoming connections
for even a few moments just to use VNC on one port is a security risk.
To manage notifications about this bug go to:
https://bugs.launchpad.net/gui-ufw/+bug/1443203/+subscriptions
Follow ups
References