Hi,
- Original Message -
> From: P J P
> Subject: Re: About F19 Firewall
>
> Static? Oh my...! Firewalld allows Applications, daemons and the user can
> request to enable a firewall feature over D-BUS. It does not seem like a good
> idea at all.
What happens if an application/dae
On Sat, Sep 21, 2013 at 12:40:15AM +0200, Björn Persson wrote:
> >> Anyone can broadcast an SSID. How does FirewallD authenticate the
> >> network connection?
> >FirewallD is not responsible for such authentication/AP validation.
> >Firewall as such is not meant to assure you're connecting to where
Mateusz Marzantowicz wrote:
>On 20.09.2013 22:23, Björn Persson wrote:
>> Anyone can broadcast an SSID. How does FirewallD authenticate the
>> network connection?
>
>FirewallD is not responsible for such authentication/AP validation.
>Firewall as such is not meant to assure you're connecting to whe
On Fri, Sep 20, 2013 at 04:17:21PM +0200, Thomas Woerner wrote:
> If a static firewall configuration fits your needs, just disable
> firewalld and use the ip*tables firewall services:
>
> https://fedoraproject.org/wiki/FirewallD?rd=FirewallD/#Using_static_firewall_rules_with_the_iptables_and_ip6ta
On 20.09.2013 22:23, Björn Persson wrote:
>
> Anyone can broadcast an SSID. How does FirewallD authenticate the
> network connection?
>
FirewallD is not responsible for such authentication/AP validation.
Firewall as such is not meant to assure you're connecting to where you want.
Mateusz Marza
On Fri, 2013-09-20 at 13:13 -0600, Erinn Looney-Triggs wrote:
> Finally, and for some reason I can't figure out, F19 Alpha and F20 Alpha
> seem to crash my wireless router. F19 Final didn't do this, but the
> Alpha sure did and I don't have a clue as to why. My systems has an
> Intel 6250 wireless
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On Fri, Sep 20, 2013 at 10:23:27PM +0200, Björn Persson wrote:
> Thomas Woerner wrote:
> >If for
> >example you are using wifi connections at home, work, .. you can bind
> >these to the (for you) appropriate zone. For example work for your
> >work wi
Hi,
- Original Message -
> From: Thomas Woerner
> Subject: Re: About F19 Firewall
> If a static firewall configuration fits your needs, just disable
> firewalld and use the ip*tables firewall services:
Static? Oh my...! Firewalld allows Applications, daemons and the user can
reques
Thomas Woerner wrote:
>If for
>example you are using wifi connections at home, work, .. you can bind
>these to the (for you) appropriate zone. For example work for your
>work wifi connection. It will be used only if you are connecting to
>your work wifi connection (it is bound to the SSID).
Anyone
First off congrats, each release gets better and better especially with
regards to the anaconda changes. Either I am getting better trained to
deal with the rough spots or they just have been fixed, I figure it is
the latter.
So here are some of the issues I ran into, I will file bugs for these
bu
On Fri, Sep 20, 2013 at 08:37:50PM +0200, Reindl Harald wrote:
> well, some people would now say "i do"
> the same i can say for sure to some other pakcages on a cloud server where
> they would disagree and because everybody has different needs keep the
> dependency chain as small as possible is al
Hi,
- Original Message -
> From: Thomas Woerner
> Subject: Re: About F19 Firewall
> 1) Separate zones.
> NM connections, interfaces and source addresses or ranges can be bound
> to zones. The initial default zone is public and all connections will be
> bound to this zone. The user o
Am 20.09.2013 20:26, schrieb Bill Nottingham:
> Reindl Harald (h.rei...@thelounge.net) said:
>> Am 20.09.2013 17:18, schrieb Miloslav Trmač:
>>> (IMHO, disk space is cheap enough that just using hard Requires: is
>>> rarely wrong enough to worry about it.)
>>
>> no it is *not*
>>
>> in cloud inf
Reindl Harald (h.rei...@thelounge.net) said:
> Am 20.09.2013 17:18, schrieb Miloslav Trmač:
> > (IMHO, disk space is cheap enough that just using hard Requires: is
> > rarely wrong enough to worry about it.)
>
> no it is *not*
>
> in cloud infrastructure where you have 100, 500, 1000
> instances
On Fri, Sep 20, 2013 at 03:12:30PM +, "Jóhann B. Guðmundsson" wrote:
> Do you have list somewhere of python dependent code in the core/baseOS?
Yes, I do. It's:
firewalld
yum
(In the cloud image, we also have cloud-init, though..)
--
Matthew Miller ☁☁☁ Fedora Cloud Architect ☁☁☁
-
On Fri, Sep 20, 2013 at 06:12:56PM +0200, Phil Knirsch wrote:
> same for yum via dnf. That only leaves authconfig, which should be
> doable as well (just needs someone actually doing it).
There's really no need for authconfig in the minimal. It needs to be there
for initial configuration, but in m
On Fri, Sep 20, 2013 at 06:07:17PM +0200, Phil Knirsch wrote:
> rpm -q --whatrequires "python(abi)" --qf "%{NAME}\n" | sort
> gives me this list:
[...]
> authconfig
Oops I forgot that one.
[...]
> So there's quite a bit of other stuff that still requires python as
> well apart from firewalld.
I
On 09/20/2013 05:12 PM, "Jóhann B. Guðmundsson" wrote:
On 09/20/2013 02:15 PM, Matthew Miller wrote:
On Tue, Sep 17, 2013 at 04:50:06PM +0200, Mateusz Marzantowicz wrote:
It's written in Python and so what? Interpreted languages like Perl and
Bash are widely used in Linux world to implement man
On Fri, Sep 20, 2013 at 04:30:05PM +0200, Thomas Woerner wrote:
> We are already working towards a rewrite in C for firewalld and
> firewall-cmd.
Awesome -- I know you'd mentioned this but I'm glad to hear that it's in
progress. I'd still _really_ like a way to have a non-long-running mode.
> fi
On 09/20/2013 06:07 PM, Phil Knirsch wrote:
On 09/20/2013 05:12 PM, "Jóhann B. Guðmundsson" wrote:
On 09/20/2013 02:15 PM, Matthew Miller wrote:
On Tue, Sep 17, 2013 at 04:50:06PM +0200, Mateusz Marzantowicz wrote:
It's written in Python and so what? Interpreted languages like Perl and
Bash ar
https://fedorahosted.org/389/ticket/47513
https://fedorahosted.org/389/attachment/ticket/47513/init-diff
--
Mark Reynolds
389 Development Team
Red Hat, Inc
mreyno...@redhat.com
--
389-devel mailing list
389-de...@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-devel
On 09/20/2013 02:15 PM, Matthew Miller wrote:
On Tue, Sep 17, 2013 at 04:50:06PM +0200, Mateusz Marzantowicz wrote:
It's written in Python and so what? Interpreted languages like Perl and
Bash are widely used in Linux world to implement many tools. I don't buy
argumentation that if something is
Dne 11.9.2013 21:54, Bill Nottingham napsal(a):
The problem with soft dependencies has always been the semantics and
the workflow, not the implementation.
So do we have the implementation? I am afraid not, since this "problem"
is always used as an excuse why not implement it. But discussing
w
On 09/20/2013 04:15 PM, Matthew Miller wrote:
On Tue, Sep 17, 2013 at 04:50:06PM +0200, Mateusz Marzantowicz wrote:
It's written in Python and so what? Interpreted languages like Perl and
Bash are widely used in Linux world to implement many tools. I don't buy
argumentation that if something is
On Fri, Sep 20, 2013 at 5:12 PM, Vít Ondruch wrote:
> Dne 11.9.2013 21:54, Bill Nottingham napsal(a):
>
>> The problem with soft dependencies has always been the semantics and the
>> workflow, not the implementation.
>
>
> So do we have the implementation? I am afraid not, since this "problem" is
Am 20.09.2013 03:32, schrieb Daniel Bartholomew:
> I've begun the prep for the special 5.5.33a release.
>
> Draft changelog and release notes are here:
>
> https://mariadb.com/kb/en/mariadb-5533a-changelog/
> https://mariadb.com/kb/en/mariadb-5533a-release-notes/
>
> As always, fixes, additions
Am 20.09.2013 15:59, schrieb Thomas Woerner:
>> Multicast
>> DNS is allowed in the internal network(chain IN_internal_allow). I
>> guess IN_internal_allow is meant for some closed group internal
>> network, not sure.
>>
>> ACCEPT udp -- 0.0.0.0/0224.0.0.251 udp
Am 20.09.2013 17:18, schrieb Miloslav Trmač:
> (IMHO, disk space is cheap enough that just using hard Requires: is
> rarely wrong enough to worry about it.)
no it is *not*
in cloud infrastructure where you have 100, 500, 1000
instances and need to reserve 50 or 150 MB more for the
base OS because
On 09/18/2013 08:16 AM, P J P wrote:
Hello,
- Original Message -
From: Mateusz Marzantowicz
Subject: Re: About F19 Firewall
Maybe, true but I doubt that simpler set of rules, that never get
audited, written by inexperienced users are more secure than "complex"
rules in FirewallD w
Florian Weimer (fwei...@redhat.com) said:
> On 09/20/2013 02:41 AM, Dave Jones wrote:
> >On Thu, Sep 19, 2013 at 04:26:08PM -0500, Bill Nottingham wrote:
> > > Because it's pretty much dead upstream, getting towards dead in
> > real-world
> > > deployments, and never really worked well anyway i
On 09/17/2013 07:21 AM, P J P wrote:
- Original Message -
From: P J P
Subject: About F19 Firewall
It doesn't have to be so complicated that even if one tries to understand it,
he/she can not. :(
This small script seems to work good.
===
#!/bin/sh
#
# fw.sh: a basic drop unless
On Tue, Sep 17, 2013 at 04:50:06PM +0200, Mateusz Marzantowicz wrote:
> It's written in Python and so what? Interpreted languages like Perl and
> Bash are widely used in Linux world to implement many tools. I don't buy
> argumentation that if something is not implemented in C it sucks.
It's not th
Hello,
On 09/16/2013 07:55 AM, P J P wrote:
Hello Tomasz,
- Original Message -
From: Tomasz Torcz
Subject: Re: About F19 Firewall
You seem to have missed this Fedora *18* feature:
https://fedoraproject.org/wiki/Features/firewalld-default
firewall-cmd is supposed to isolate u
On 09/15/2013 08:52 PM, P J P wrote:
Hi,
I upgraded to F19 recently. And I happened to look at the output of iptables(8)
today.
$ iptables -nL
It's baffling! It's crazy 4 pages long listing!!
Why
are there so many chains? Most are empty. Those which have rules, jump
from one chai
Le lundi 16 septembre 2013 à 08:51 -0600, Kevin Fenzi a écrit :
> On Mon, 16 Sep 2013 10:36:41 +0200
> Karel Zak wrote:
>
> > Please, fix/improve your email client UI. All bugzilla emails
> > contain all necessary information in email header:
>
> ...snip...
>
> > For example if you use mutt the
On 20.09.2013 13:33, Dridi Boukelmoune wrote:
On Thu, Sep 19, 2013 at 6:41 PM, Sandro Mani wrote:
Hi,
In the hope to continue the effort of getting pbuilder (and hence an easy
way to build deb packages from fedora) into the repos (review here: [1]),
I've packaged devscripts, debian-keyring, u
On Thu, Sep 19, 2013 at 6:41 PM, Sandro Mani wrote:
> Hi,
>
> In the hope to continue the effort of getting pbuilder (and hence an easy
> way to build deb packages from fedora) into the repos (review here: [1]),
> I've packaged devscripts, debian-keyring, ubuntu-keyring and jetring.
> Reviews are
On Wed, Sep 11, 2013 at 05:32:29PM -0400, Simo Sorce wrote:
> On Wed, 2013-09-11 at 15:26 -0500, Jeffrey Ollie wrote:
> > On Wed, Sep 11, 2013 at 3:07 PM, Simo Sorce wrote:
> > >
> > > Almost certainly you do not want a home directory backed by a cifs
> > > filesystem, however if you really do I s
38 matches
Mail list logo