Linked by Howard Fosdick on Mon 30th May 2011 22:04 UTC
Ubuntu, Kubuntu, Xubuntu Canonical Ltd., the company behind Ubuntu Linux, estimates that the product has over 12 million users worldwide. And why not? Ubuntu is free and it runs more than ten thousand applications. It has a vibrant user community, websites covering everything you might ever need to know, good tutorials, a paid support option, and more. Yet I often hear friends and co-workers casually criticize Ubuntu. Perhaps this the price of success. Or is it? In this article I'll analyze common criticisms and try to sort fact from fiction.
Permalink for comment 475234
To read all comments associated with this story, please click here.
Ubuntu doesn't NEED a firewall
by mintar on Tue 31st May 2011 09:53 UTC
mintar
Member since:
2008-09-26

Why would you need a firewall? By default, Ubuntu ships with no open ports on public interfaces. That means that in its default configuration, a port scan on an Ubuntu machine would show exactly the same result with or without a firewall. That's a big difference to Windows, where (at least until XP) the system shipped in a vulnerable state, so it became almost a reflex to install a firewall immediately after a fresh install.

Now, whenever you install a new server program, you usually want its public ports to be reachable -- that is the whole point of installing a server program. Having to configure the firewall after installation is just an additional step. If you don't want that program to open a public port (e.g., MySQL or Apache installed locally for testing), you can just disable that in the program's config files. I can't think of a single server program I ever installed (except MySQL and Apache, see above) where I didn't want its ports to be open. In contrast to many Windows programs, Linux programs usually don't go about opening ports when it's not absolutely necessary.

That said, I have to admit that a firewall might be useful for newbies who might accidentally install a server program without knowing that it will open a port.

Reply Score: 2