That makes no sense, if that's the case then why is a default ruleset provided for ipv4 but not ipv6?
More and more systems are running ipv6 these days and ferm users may not even know their systems are exposed in this way. On Fri, Aug 4, 2017 at 9:16 AM Alexander Wirt <formo...@debian.org> wrote: > fixed 701200 2.4-1 > thanks > > On Fri, 04 Aug 2017, Adam McKenna wrote: > > > tag 701200 security > > > > This is not just a bug, this is a gaping security hole. The default > > configuration is wide open on ipv6. > > > > Please add, at a minimum, the following default rules for ipv6: > This was fixed in unstable with the latest upload. > I don't think this justifies a stable update. > > I expect users to write their own ruleset. > > Alex >
