SYSTEM WARNING: 'file_get_contents(https://www.clearos.com/?rendertype=json&get=header): failed to open stream: Connection refused' in '/var/www/virtual/newwrapper/cf_topmenu.inc' line 5

ClearOS Bug Tracker


View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0020441ClearOSapp-incoming-firewall - Incoming Firewallpublic2018-06-20 02:142021-11-11 06:02
ReporterNickH 
Assigned To 
PrioritynormalSeverityfeatureReproducibilityalways
StatusclosedResolutionsuspended 
PlatformOSOS Version
Product Version7.5.0 
Target VersionFixed in Version 
Summary0020441: Add extra validation step if services considered dangerous are opened
DescriptionPlease add an extra validation step if the sysop tries to open incoming services that are generally considered dangerous to open to the internet (e.g. NetBIOS, SMB, SMB over TCP). It should throw some sort of "Are you really sure" warning, and perhaps note that the services are open to the LAN without any extra rule being added.

I have recently been on to 2 customer systems and have noted that the NetBIOS and SMB ports had been opened to the internet and I warned the customers who both said they only did it so people on the LAN could access the file shares ...... It could be valid in rare use cases in Gateway mode but most times won't be. It could easily be valid in Standalone with Firewall. It is the Gateway mode I really want to cover with this change.
TagsNo tags attached.
Attached Files

- Relationships


- Issue History
Date Modified Username Field Change
2018-06-20 02:14 NickH New Issue
2018-06-20 07:37 user2 Status new => confirmed
2021-11-11 06:02 NickH Note Added: 0016271
2021-11-11 06:02 NickH Status confirmed => closed
2021-11-11 06:02 NickH Resolution open => suspended

SYSTEM WARNING: 'file_get_contents(https://www.clearos.com/?rendertype=json&get=footer): failed to open stream: Connection refused' in '/var/www/virtual/newwrapper/cf_footer.inc' line 7