Re: jessie release goals

To: debian-devel@lists.debian.org
Subject: Re: jessie release goals
From: Vincent Lefevre <vincent@vinc17.net>
Date: Mon, 6 May 2013 22:00:36 +0200
Message-id: <[🔎] 20130506200036.GA16232@xvii.vinc17.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 5187DFB3.6000704@debian.org>
References: <[🔎] 5187A6F5.2080009@debian.org> <[🔎] 1367849287.8251.18.camel@heisenberg.scientia.net> <[🔎] 5187DFB3.6000704@debian.org>

On 2013-05-07 00:52:03 +0800, Thomas Goirand wrote:
> On 05/06/2013 10:08 PM, Christoph Anton Mitterer wrote:
> > The usually come only with a default config which may not be hardened
> > enough for the local system, and that short time may already be enough
> > for an attacker to attack.
> If the default config isn't hardened enough, fix the default config.

This can be fine for some daemons/servers. For instance, for a web
server, displaying a default web page is harmless. But what about a
mail server? Any default config would probably lead to loss of mail
if things like virtual alias domains are used.

-- 
Vincent Lefèvre <vincent@vinc17.net> - Web: <http://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <http://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

Reply to:

Follow-Ups:
- Re: jessie release goals
  - From: Thomas Goirand <zigo@debian.org>

References:
- jessie release goals
  - From: Andreas Beckmann <anbe@debian.org>
- Re: jessie release goals
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- Re: jessie release goals
  - From: Thomas Goirand <zigo@debian.org>

Prev by Date: Re: Developer repositories for Debian
Next by Date: Re: jessie release goals
Previous by thread: Re: jessie release goals
Next by thread: Re: jessie release goals
Index(es):
- Date
- Thread