Roberto C. Sánchez wrote: > I suspect that the vast majority of people deploying systems are doing > so behind some sort of device that provides border security to the local > network (e.g., router/firewall/NAT/etc.). So, if the default threat > model is "a relatively trusted network with adequate border security" > then the current default is appropriate.
I agree completely. The default policy in RedHat or CentOS is annoying. I have to disable those every time after installation.
