W dniu 03.04.2015 o 21:44, Matthias Apitz pisze: > El día Friday, April 03, 2015 a las 09:32:33PM +0200, Michał Sawicz escribió: > >> W dniu 03.04.2015 o 21:13, Matthias Apitz pisze: >>> I.e. the phone is completely open on all ports!!! Can I activate and >>> configure some inbound firewall in the phone? >> >> Well, you *opened* that port to listen on, how is that not expected? > > Of course I did, to run this test. > >> Isn't not listening on any outside port better than putting a firewall >> on the device? If you find a service that is actually listening on the >> device, that'd definitely be a bug that needs fixing. > > The device is at least (after enabling SSH) listening on port 22.
Yes, after enabling it, which is a developer thing to do. >> Can you describe an attack vector you're imagining that would require a >> firewall to be installed on the device? > > The above mentioned port 22 and any other any app may LISTEN on. Apps are confined, they can not open ports to listen on. -- Michał Sawicz <[email protected]> Canonical Ltd.
signature.asc
Description: OpenPGP digital signature
-- Mailing list: https://launchpad.net/~ubuntu-phone Post to : [email protected] Unsubscribe : https://launchpad.net/~ubuntu-phone More help : https://help.launchpad.net/ListHelp
