I am going to mark this Won't Fix for now, since this seems a
specialized case and ufw allows for it via it rules files. I'll reopen
if there is something that I think could be added without adding
confusion to users.
** Changed in: ufw
Importance: Undecided = Wishlist
** Changed in: ufw
The other possible disadvantage of this configuration is that you might
be running services which are private, but which try to make outgoing
connections to the internet *from* a privileged port. I can't think of
any example off the top of my head, but it's something to consider.
--
User deny
** Also affects: ufw
Importance: Undecided
Status: New
--
User deny rules should override connection tracking
https://bugs.launchpad.net/bugs/507469
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
Thank you for using Ubuntu and taking the time to report a bug. I'll need to
look at this more before considering making changes, but I did want to say in
the meantime that /etc/ufw/*.rules are there for you as an administrator to
adjust as necessary for your site requirements. Feel from to
I might also mention that ufw in Ubuntu 9.10 also has egress (outgoing)
filtering support, which can also probably help here.
--
User deny rules should override connection tracking
https://bugs.launchpad.net/bugs/507469
You received this bug notification because you are a member of Ubuntu
Bugs,
Thanks for the quick response! I tried changing the rules files and it
did what I wanted.
I'm already running 9.10, but I'm not sure how I could use egress
filtering to protect against this.
--
User deny rules should override connection tracking
https://bugs.launchpad.net/bugs/507469
You