The firewall *is* enabled by default.
UFW is not the firewall. It's just one tool to manipulate the firewall. There are several good tools available, including UFW.
The firewall on an ubuntu install looks like this:
Code:
$ sudo iptables -L
[sudo] password for ian:
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
By default, it's set to accept all inbound and outbound connections.
On Windows and OSX and others, you don't have a lot of choice about your applications connections, or how to monitor them. On Ubuntu, you do.
The applications in Software Center don't "phone home" nor make mysterious connections nor open secret backdoors that you will need to block. You can verify that by monitoring your connections, and by reading the source code. You have full control over what services are listening and operating on your system...if you want to take the time to learn it. So there's not much you need to block.
That doesn't mean you can ignore security. It means you can run safe services in a safe way, and simply uninstall or disable services you don't need, instead of blocking those services at the firewall.
Bookmarks