SSH Server Enabled By Default!
I understand that not everyone will agree, but I personally would assume that a default desktop install would have absolutely no server type software installed and have all ports closed except for web browsing maybe (Port 80).
As the SSH server is installed by default, we naturally run into another question. Are their any other server type softwares installed by default and are their any non necessary ports open from a default desktop install of Trisquel 6?
Should it have desktop features like secure file sharing? It's a reason
why the SSH server is running by default.
Closing all incoming ports is imo pointless unless running a service
there and needing a more complex configuration than making it available
to all or just the local machine. Closing outgoing ports will break
normal desktop software like email or IM clients.
Run "ss -ltun" (or "netstat -ltun") on a default install to know for
sure what services are running, check listening addresses: many are
available only from the same machine.
And this is why this issue is very urgent:
http://thehackernews.com/2014/03/operation-windigo-linux-malware.html
This just got fixed!
Thank you, lembas! :-)
Thank you Mzee!