Re: Disable ZeroConf: how to ?

To: debian-devel@lists.debian.org
Cc: Klaus Ethgen <Klaus@ethgen.de>
Subject: Re: Disable ZeroConf: how to ?
From: Olaf van der Spek <olafvdspek@gmail.com>
Date: Fri, 4 Mar 2011 16:09:44 +0100
Message-id: <[🔎] AANLkTin79bF3bbeNVV=R_fUy_2=TxHj2yczEKa9wDemA@mail.gmail.com>
In-reply-to: <[🔎] 20110304145937.GG4664@ikki.ethgen.ch>
References: <[🔎] 201103021825.32204.roucaries.bastien@gmail.com> <[🔎] 87pqq9kwd1.fsf@sonic.technologeek.org> <[🔎] 20110302225642.GC17584@ikki.ethgen.ch> <[🔎] 4D6EFE56.8030707@ubuntu.com> <[🔎] 20110303100247.GA20678@ikki.ethgen.ch> <[🔎] 20110304093130.GC29894@celtic.nixsys.be> <[🔎] 20110304103201.GA4664@ikki.ethgen.ch> <[🔎] 20110304112432.GE29894@celtic.nixsys.be> <[🔎] 20110304145937.GG4664@ikki.ethgen.ch>

On Fri, Mar 4, 2011 at 3:59 PM, Klaus Ethgen <Klaus@ethgen.de> wrote:
> In ancient times debian was packaged the way that the administrator only
> installed the daemons that he needed. Today many daemons gets installed
> by dependencies and gets started without any need. Just the fact is
> security relevant as any running daemon higher the change that there is
> a security hole. Every daemon! And examples are found at many places
> today. I. e. mysqld from kde packages, apache for a linkchecker, avahi
> and consortions for gnome, ... Not to mention all the daemons that do
> not listen on network as gconf, kded4, ...

Daemons that don't listen on a public interface are less of an issue.
But in general I agree, daemons shouldn't run without need, especially
not on public interfaces.

> I think, in the last few years, the quality of (some) debian packages
> has sunken. But this is just my personal view, and I am sorry to say it.
>
> If you want to change debian to be ubuntu it would be the time to look
> for another distribution that can be used on servers. (unfortunately I
> do not know an alternative.)

Actually "Ubuntu ships with no open ports on public interfaces" (by default).

It's also silly to launch another distro just because some settings
have to be changed.
-- 
Olaf

Reply to:

Follow-Ups:
- Re: Disable ZeroConf: how to ?
  - From: Adam Borowski <kilobyte@angband.pl>

References:
- Disable ZeroConf: how to ?
  - From: Bastien ROUCARIES <roucaries.bastien@gmail.com>
- Re: Disable ZeroConf: how to ?
  - From: Julien BLACHE <jblache@debian.org>
- Re: Disable ZeroConf: how to ?
  - From: Klaus Ethgen <Klaus@Ethgen.de>
- Re: Disable ZeroConf: how to ?
  - From: Chow Loong Jin <hyperair@ubuntu.com>
- Re: Disable ZeroConf: how to ?
  - From: Klaus Ethgen <Klaus@Ethgen.de>
- Re: Disable ZeroConf: how to ?
  - From: Wouter Verhelst <wouter@debian.org>
- Re: Disable ZeroConf: how to ?
  - From: Klaus Ethgen <Klaus@Ethgen.de>
- Re: Disable ZeroConf: how to ?
  - From: Wouter Verhelst <wouter@debian.org>
- Re: Disable ZeroConf: how to ?
  - From: Klaus Ethgen <Klaus@Ethgen.de>

Prev by Date: Re: Disable ZeroConf: how to ?
Next by Date: Re: Disable ZeroConf: how to ?
Previous by thread: Re: Disable ZeroConf: how to ?
Next by thread: Re: Disable ZeroConf: how to ?
Index(es):
- Date
- Thread