to reduce attack-surface, if there’s no reason for the port to be open, don’t open it.
Comment on What's the real danger of opening ports?
sadfitzy@ttrpg.network 3 weeks ago
Opening ports essentially allows other computers on the internet to initiate a connection with yours.
It’s only dangerous if a service running on those ports can be exploited.
ganymede@lemmy.ml 3 weeks ago
medem@lemmy.wtf 3 weeks ago
This, coupled with the fact that firewalls are protocol-agnostic. You can, for instance, use ‘port https’ in your Packet Filter config instead of ‘port 443’, but that simply means that PF will block/pass traffic to whatever service is bound to that particular port, and NOT https connections in general.
roofuskit@lemmy.world 3 weeks ago
“If” is not the correct word choice. It’s only dangerous when a service on the port gets exploited.
metaStatic@kbin.earth 3 weeks ago
Driving a car is only dangerous when you die in a traffic accident.
your logic doesn't check out.
roofuskit@lemmy.world 3 weeks ago
If it’s exposed to the internet it’s a matter of when, not if, it is compromised.