[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default

sorry for the quick jab, but wouldn't disabling inetd from the start fix this problem? I can't think of any tcpd services that start default without it. 

i mean, to be frank, what modern useful unix services run under inetd that would be 'expected' on a debian system anyways? Install inetd and tcpd, etc, but don't put them in rc2.d.

just a suggestion.

On Wed, Apr 18, 2001 at 09:35:06PM +0200, Nils Jeppe wrote:
> On Wed, 18 Apr 2001, Adam McKenna wrote:
> > Oh, come on now.  Anyone who's serious about security is not using name-based
> > access lists.  For that matter, anyone who's serious about security is not
> > relying on TCP wrappers for it, because it's been shown over and over again
> > that TCP wrappers "security" can be easily defeated.  See Dan Bernstein's
> > posts to Bugtraq regarding this issue.
> I KNOW. But not everybody who runs Debian is serious enough about
> security. Why soften the defaults?
> -- 
>  "But since you asked: I am like a hunter of peace, one who chases the
>   elusive mayfly of love. - Well, something like that." -- Trigun
>   Echelon Bait v2.0: Biological assassination of terrorism in trade center
>   anthrax nuclear plutonium weapon poison president islam bush.
> -- 
> To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Erik Hollensbe <erik@powells.com>
Programmer, Powells Internet Division
"You can't depend on your eyes when your imagination is out of focus."
- Mark Twain

Reply to: