I didn't realise that you only needed to run slackpkg update gpg once only. I just assumed that the key got updated periodically. If I don't need to run this command every time I update Slackware, then I am not worried about the ping issue - if this will only occur when I install Slackware for the first.
My current upgrade instructions are as follows:
Quote:
slackpkg update gpg
slackpkg update
slackpkg upgrade slackpkg
Then check mirrors and blacklist file as above as this will be reset.
slackpkg new-config
slackpkg update gpg
slackpkg update
slackpkg upgrade aaa_glibc-solibs
Reboot after this step, to make sure that everything after this is upgraded using the new aaa_glibc-solibs libraries. Then run update gpg and update again and then install-new
slackpkg install-new (You need to install new packages when upgrading existing packages if you are running Slackware current because sometimes upgraded packages on current need software)
slackpkg upgrade-all
Select O to overwrite all old files with new files. Slackware does show what files have been updated.
slackpkg clean-system
Then reboot Slackware.
|
I have always followed this religiously ever since I borked the system by not rebooting after updating aaa_glibc-solibs libraries. Once I have done all that, I then run the procedure again, but with the kernel updates allowed in the blacklist file to update kernel itself.
Why block/restrict/ icmp, dns and ntp connections?
https://www.paloaltonetworks.co.uk/c...-dns-tunneling
https://blogs.blackberry.com/en/2023...and-prevention
https://www.blackhillsinfosec.com/dn...cobalt-strike/
The above explain how dns can be abused by bad actors. Somewhere I saw similar articles for using ntp port 123 being abused by bad actors.
ICMP can technically be abused by bad actors as well. For me, the key thing is that I don't use ping for anything. The only thing that is blocked in the firewall is the ping for slackware update hence the question. Given that there are real world examples of abuse of dns and ntp open ports, it doesn't make any sense to open icmp ports if I don't even use icmp.
However, I will mark the question as solved because if I only have to run gpg update once when installing Slackware, then it's not an issue.