Jim Kielman jim_kielman at
Sun Aug 29 21:10:38 UTC 2010

There is a tool for setting firewall rules installed by default called 
ufw, for those that need a graphical tool to set firewall rules, it's 
just as easy to install gufw, as it is to install firestarter.

The biggest problem is one of education, most users assume that 
firestarter is the the firewall, when in fact it is iptables/netfilter.

I'm still learning how to use mailing lists, I created a message last 
night that only got sent to the the person I replied to, so here goes again.

I'm one of the moderators on the forum, and we are constantly trying to 
educate the membership of the dangers of running applications as root. 
Firestarter needs to be run as root.

This wouldn't be a problem if users ran the program the way it is 
supposed to be run, start it, set the firewall rules, then shut it down. 
Many users start it up when they log in, and leave it run all day,as it 
monitors the firewall and shows blocked connection. Many also assume 
that if firestarter is shutdown they no longer are protected by a firewall.

With the included tool for setting the firewall all you have to do is 
enable the default rule set and it's done. The default rule set blocks 
almost everything,  and in Windows terms makes the users system seemed 
to be stealthed. All you need is one simple command:

sudo ufw enable

And your done. If the defult rules aren't good enough, you can use gufw 
for adding additional rules.

More information about the Ubuntu-devel-discuss mailing list