Re: policies for access to local resources

To: debian-ctte@lists.debian.org, 166718-quiet@bugs.debian.org
Subject: Re: policies for access to local resources
From: Wichert Akkerman <wichert@wiggy.net>
Date: Thu, 1 Apr 2004 14:38:04 +0200
Message-id: <[🔎] 20040401123804.GD28856@wiggy.net>
Mail-followup-to: Wichert Akkerman <wichert@wiggy.net>, debian-ctte@lists.debian.org, 166718-quiet@bugs.debian.org
In-reply-to: <[🔎] 20040401072940.V24398@links.magenta.com>
References: <8765ck122g.fsf@glaurung.internal.golden-gryphon.com> <[🔎] 20040401072940.V24398@links.magenta.com>

Previously Raul Miller wrote:
> However, it would probably be a good idea to give the people who have
> security concerns an easy way of avoiding this solution when building
> large sets of machines.

This is largely orthogonal to the current issue, but it would be nice if
d-i had a 'select machine type' option where people could select between
'private machine on private network', 'shared machine with trusted
users', 'shared machine with untrusted users', 'server' or something
similar which would affect:

* default firewall (block/allow all incoming connections)
* package selection (do/don't install pam_console for example)

Wichert.

-- 
Wichert Akkerman <wichert@wiggy.net>    It is simple to make things.
http://www.wiggy.net/                   It is hard to make things simple.

Reply to:

Follow-Ups:
- Re: policies for access to local resources
  - From: Raul Miller <moth@debian.org>
- Re: policies for access to local resources
  - From: Raul Miller <moth@debian.org>

References:
- policies for access to local resources
  - From: Raul Miller <moth@debian.org>

Prev by Date: policies for access to local resources
Next by Date: Re: policies for access to local resources
Previous by thread: policies for access to local resources
Next by thread: Re: policies for access to local resources
Index(es):
- Date
- Thread