Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default
sorry for the quick jab, but wouldn't disabling inetd from the start fix this problem? I can't think of any tcpd services that start default without it.
i mean, to be frank, what modern useful unix services run under inetd that would be 'expected' on a debian system anyways? Install inetd and tcpd, etc, but don't put them in rc2.d.
just a suggestion.
On Wed, Apr 18, 2001 at 09:35:06PM +0200, Nils Jeppe wrote:
> On Wed, 18 Apr 2001, Adam McKenna wrote:
> > Oh, come on now. Anyone who's serious about security is not using name-based
> > access lists. For that matter, anyone who's serious about security is not
> > relying on TCP wrappers for it, because it's been shown over and over again
> > that TCP wrappers "security" can be easily defeated. See Dan Bernstein's
> > posts to Bugtraq regarding this issue.
> I KNOW. But not everybody who runs Debian is serious enough about
> security. Why soften the defaults?
> "But since you asked: I am like a hunter of peace, one who chases the
> elusive mayfly of love. - Well, something like that." -- Trigun
> Echelon Bait v2.0: Biological assassination of terrorism in trade center
> anthrax nuclear plutonium weapon poison president islam bush.
> To UNSUBSCRIBE, email to firstname.lastname@example.org
> with a subject of "unsubscribe". Trouble? Contact email@example.com
Erik Hollensbe <firstname.lastname@example.org>
Programmer, Powells Internet Division
"You can't depend on your eyes when your imagination is out of focus."
- Mark Twain