this post was submitted on 06 Oct 2023
93 points (95.1% liked)

Linux

48381 readers
955 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
 

Hi. I wanted to know if it's needed to install a firewall on a linux desktop/laptop. Why yes or why no?

you are viewing a single comment's thread
view the rest of the comments
[–] flashgnash@lemm.ee 5 points 1 year ago (2 children)

Any vulnerabilities in any of your software that can talk to a network, ssh, browser, the operating system itsself could be exploited if your firewall is down

If you're using username and password and have ssh enabled, for example anyone on your network could attempt to log in to your machine

[–] LufyCZ@lemmy.world 1 points 1 year ago (1 children)

For ssh, sure.

But a browser? No way.

[–] flashgnash@lemm.ee 1 points 1 year ago* (last edited 1 year ago) (1 children)

My understanding is there can be a vulnerability in absolutely anything

Browsers are unlikely to but don't think it's impossible

[–] LufyCZ@lemmy.world 1 points 1 year ago

A firewall protects open ports on your machine. A browser does not have any open ports.

Of course they have vulnerabilities, but a firewall won't protect you from them.

[–] Sir_Simon_Spamalot@lemmy.world 1 points 1 year ago (1 children)

Let's just say the system does not have any outward facing service (no ssh, http, smb, nfs).

[–] flashgnash@lemm.ee 2 points 1 year ago

At that point why not just have the firewall set to deny everything just to be safe though? There's always the chance you missed something that's decided to listen on some random port and if you aren't using anything that listens on a network why have the firewall open anyway