Bastille default ALLOW_FRAGMENTS="Y"

Discussion in 'Installation/Configuration' started by wpwood3, Jan 30, 2008.

  1. wpwood3

    wpwood3 New Member

    The default setting in bastille-firewall.cfg is ALLOW_FRAGMENTS="Y".

    In the configuration file the notes say "There's no good reason to allow these". It also says ALLOW_FRAGMENTS="N" is the safest setting.

    Why is the default setting for ISPConfig ALLOW_FRAGMENTS="Y"? Is there any downside to changing this to "N" in the cfg file and the master cfg file?
  2. daveb

    daveb Member

    I use
    I have never seen any ill effects yet.
  3. wpwood3

    wpwood3 New Member

    Thanks. I'll give that a try.

Share This Page