Re: OS Hardening

To: Alex Swavely <aswavely@softwarerevolution.com>
Cc: debian-security@lists.debian.org
Subject: Re: OS Hardening
From: Andres Salomon <dilinger@mp3revolution.net>
Date: Wed, 13 Dec 2000 14:48:24 -0500
Message-id: <[🔎] 20001213144824.A4936@incandescent.mp3revolution.net>
In-reply-to: <[🔎] NEBBINHHGFPGELJKBHFMCEPPCCAA.aswavely@softwarerevolution.com>; from aswavely@softwarerevolution.com on Wed, Dec 13, 2000 at 10:23:12AM -0800
References: <[🔎] 87aea08z0x.fsf@winter.inter-i.uni-mainz.de> <[🔎] NEBBINHHGFPGELJKBHFMCEPPCCAA.aswavely@softwarerevolution.com>

On Wed, Dec 13, 2000 at 10:23:12AM -0800, Alex Swavely wrote:
> 
> I think the point here is that the user WILL NOT read such documentation 90%
> of the time, regardless (which is why the RTFM Coffee Mug over at thinkgeek
> is so popular).
> 

this is exactly why i think something like this would be better
handled through debconf.  if a user's not gonna read the docs,
they're probably not gonna go searching around for any type
of hardening scripts.  you could either run something right
after install, and mess with other people's packages (which
i'm sure they'd just _love_), or have debconf ask security
questions while installing.  

-- 
"... being a Linux user is sort of like living in a house inhabited
by a large family of carpenters and architects. Every morning when
you wake up, the house is a little different. Maybe there is a new
turret, or some walls have moved. Or perhaps someone has temporarily
removed the floor under your bed." - Unix for Dummies, 2nd Edition
        -- found in the .sig of Rob Riggs, rriggs@tesser.com

Reply to:

References:
- Re: OS Hardening
  - From: Rainer Weikusat <weikusat@mail.Uni-Mainz.de>
- RE: OS Hardening
  - From: "Alex Swavely" <aswavely@softwarerevolution.com>

Prev by Date: Re: Checklist (was Re: OS Hardening)
Next by Date: Re: Checklist (was Re: OS Hardening)
Previous by thread: RE: OS Hardening
Next by thread: Re: OS Hardening
Index(es):
- Date
- Thread