Re: FW: Careful. This is for information only.

To: debian-user@lists.debian.org
Subject: Re: FW: Careful. This is for information only.
From: Craig Dickson <crdic@yahoo.com>
Date: Wed, 8 Aug 2001 14:29:29 -0700
Message-id: <[🔎] 20010808142929.A18567@crdic.ath.cx>
In-reply-to: <[🔎] 20010808150946.C1826@rdlg.net>
References: <[🔎] 878zgvgy16.fsf@toncho.dhh.gt.org> <[🔎] Pine.HPP.3.95.1010808083336.4503B-100000@elektron.its.tudelft.nl> <[🔎] 20010808121410.D8939@micromuse.com> <[🔎] 20010808113516.C5312@rdlg.net> <[🔎] 20010808112102.A16615@crdic.ath.cx> <[🔎] 20010808123042.D6197@rdlg.net> <[🔎] 20010808131444.A17061@crdic.ath.cx> <[🔎] 20010808155057.B7874@sherohman.org> <[🔎] 20010808140406.A18297@crdic.ath.cx> <[🔎] 20010808150946.C1826@rdlg.net>

Robert L. Harris wrote:

> You'd think within 12 days people would figure out how to download and
> install a service pack.  Kinda scary how long this has been going on
> in the first place.

Indeed. The basic problem, I think (not that this is anything terribly
revelatory), is that the Internet is really not a safe place for people
who don't understand computers well enough to protect themselves, and
Microsoft has never really made security their primary concern. Not that
they're alone in that; a default Red Hat Linux installation runs all
kinds of potentially vulnerable services that the average home user
doesn't understand or need. (Nor is Red Hat the only distro with this
problem. Even Debian, which is more conservative than most in this
regard, includes telnetd, fingerd, and identd among the "standard"
packages. My machines run none of these, but only because I went out of
my way to remove them.)

My feeling is that the default workstation configuration for any OS
should have _no_ open ports. No web server, no mail server (just an MTA
configured only for outbound use via the command line), no ftpd, no
telnetd, no sshd, no fingerd, no identd, no file or printer sharing, X11
services configured for local use only, etc., etc., etc. If the user
wants these things, s/he should have to actively select them one by one.
Not that this is any guarantee that the user will know how to manage
them, but it's better than installing everything by default in the inane
goal of giving the user a "feature-packed" system.

Craig

Reply to:

Follow-Ups:
- Re: FW: Careful. This is for information only.
  - From: "Robert L. Harris" <Robert.L.Harris@rdlg.net>

References:
- Re: FW: Careful. This is for information only.
  - From: John Hasler <john@dhh.gt.org>
- Re: FW: Careful. This is for information only.
  - From: Sebastiaan <S.Breedveld@ITS.TUDelft.NL>
- Re: FW: Careful. This is for information only.
  - From: Nathan E Norman <nnorman@micromuse.com>
- Re: FW: Careful. This is for information only.
  - From: "Robert L. Harris" <Robert.L.Harris@rdlg.net>
- Re: FW: Careful. This is for information only.
  - From: Craig Dickson <crdic@yahoo.com>
- Re: FW: Careful. This is for information only.
  - From: "Robert L. Harris" <Robert.L.Harris@rdlg.net>
- Re: FW: Careful. This is for information only.
  - From: Craig Dickson <crdic@yahoo.com>
- Re: FW: Careful. This is for information only.
  - From: Dave Sherohman <esper@sherohman.org>
- Re: FW: Careful. This is for information only.
  - From: Craig Dickson <crdic@yahoo.com>
- Re: FW: Careful. This is for information only.
  - From: "Robert L. Harris" <Robert.L.Harris@rdlg.net>

Prev by Date: Re: Replacing a RAID Drive
Next by Date: Re: exploring debian's users and groups
Previous by thread: Re: FW: Careful. This is for information only.
Next by thread: Re: FW: Careful. This is for information only.
Index(es):
- Date
- Thread