Sometimes you’ll need to fetch GPG keys from a remote server (let’s say the MIT’s) to enforce some signature verifications.
Yeah, I meant “often”, right ?
GPG uses a very unusual port (11371/tcp) for its remote connections.
Against a regular firewall configuration (containing
DROP policies on all chains, isn’t it ?), it would be blocked by default.
You’ll have to manually authorize it.
… when it’s for the machine you are on
… when your machine is acting as a router / firewall
No conclusion, ‘hope it helped.