ubuntu-phone team mailing list archive
-
ubuntu-phone team
-
Mailing list archive
-
Message #11837
Re: do we have a firewall in the phone?
W dniu 03.04.2015 o 21:44, Matthias Apitz pisze:
> El día Friday, April 03, 2015 a las 09:32:33PM +0200, Michał Sawicz escribió:
>
>> W dniu 03.04.2015 o 21:13, Matthias Apitz pisze:
>>> I.e. the phone is completely open on all ports!!! Can I activate and
>>> configure some inbound firewall in the phone?
>>
>> Well, you *opened* that port to listen on, how is that not expected?
>
> Of course I did, to run this test.
>
>> Isn't not listening on any outside port better than putting a firewall
>> on the device? If you find a service that is actually listening on the
>> device, that'd definitely be a bug that needs fixing.
>
> The device is at least (after enabling SSH) listening on port 22.
Yes, after enabling it, which is a developer thing to do.
>> Can you describe an attack vector you're imagining that would require a
>> firewall to be installed on the device?
>
> The above mentioned port 22 and any other any app may LISTEN on.
Apps are confined, they can not open ports to listen on.
--
Michał Sawicz <michal.sawicz@xxxxxxxxxxxxx>
Canonical Ltd.
Attachment:
signature.asc
Description: OpenPGP digital signature
Follow ups
References