Re: What should a Debian-security metapackage should provide?

To: Javier Fernandez-Sanguino Pe?a <jfernandez@sgi.es>
Cc: Debian Security Mailing List <debian-security@lists.debian.org>
Subject: Re: What should a Debian-security metapackage should provide?
From: jake@capecodvacation.com (Jacob Kuntz)
Date: Mon, 4 Dec 2000 15:31:37 -0500
Message-id: <[🔎] 20001204153137.B24451@capecodvacation.com>
In-reply-to: <[🔎] 3A2BDEF5.35B7E676@sgi.es>; from jfernandez@sgi.es on Mon, Dec 04, 2000 at 07:14:13PM +0100
References: <[🔎] 3A2BDEF5.35B7E676@sgi.es>

from the secret journal of Javier Fernandez-Sanguino Pe?a (jfernandez@sgi.es):
> 	For example, I would add dependancies on snort, nessus, nmap, queso, cracklib2,
> ethereal, firestarter (when available as a Debian package), john, netdiag,
> sniffit, otp, makepasswd, logcheck, secpolicy, libpam, lasg... (might have left
> others outs). Kind of a swiss-army security knife :)

for the same reason as including security documentation, i would include
pwgen rather than (or in addition to) makepasswd. pwgen makes pronouncable
random passwords that are easier for users to remember, and thus less likely
to be on a postit note on the monitor.

> 
> 	It could also Conflict with known no-security packages..
> 
> 	Any ideas? Is it really interesting or just a pointless idea?

i think it's a good idea, but i haven't read the rest of this thread yet :)

> 
> 	Javi


-- 
jacob kuntz
jpk@cape.com
underworld.net/~jake

Reply to:

References:
- What should a Debian-security metapackage should provide?
  - From: Javier Fernandez-Sanguino Peña <jfernandez@sgi.es>

Prev by Date: Snort Log?
Next by Date: Re: What should a Debian-security metapackage should provide?
Previous by thread: Re: What should a Debian-security metapackage should provide?
Next by thread: Re: What should a Debian-security metapackage should provide?
Index(es):
- Date
- Thread