[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: red worm amusement

Alright, I said I was bowing out, but I will reply to this last email.
In my first post, I may not have been completely clear.  I said that
OpenBSD doesn't start services that are insecure.  Now, we all know
that no service is totally secure, so that statement is somewhat of
an oxymoron.  However, no one on any OpenBSD mailing list is telling 
people to turn off the services that are started by default, while 
on this list, everyone is always saying to turn off inetd and
whatever else they are not using.  My point is, why should someone
have to go through the trouble of turning them off?  Why are they
started in the first place, if the advice it to immediately shut them
off?  If a person needs that service then they can turn it on, correct?
This extends to packages that are added to the base system.  I don't
think it's right to assume that one wants to start the service 
immediately.  The argument that you shouldn't install a service if
you don't know what you're doing just doesn't make sense.  If you
never install the package, then how are you going to know anything 
about it?  How are you going to customize a configuration file,
if you have no file to modify?

CaT's reply that packages are starting to made with provisions to
exit the init script before the service is started, is I guess really
the answer I was looking for.  Is that a new policy?  If it is, I
think it's a good one.

As to not waste any more innocent bystanders bandwidth/disk space,
if anyone wishes to further discuss the questions I raised above,
or try to flame me, please send your email to:

<jakemsr@clipper.net>

On Sun, Jul 22, 2001 at 01:57:24AM -0800, Ethan Benson wrote:
> On Sun, Jul 22, 2001 at 07:11:04PM +1000, CaT wrote:
> > On Sun, Jul 22, 2001 at 02:08:36AM -0700, Jacob Meuser wrote:
> 
> > > I mentioned that OpenBSD has a policy of not starting services by
> > > default.  Ethan Benson went off on how OpenBSD is "rubbish".  As
> 
> no i said the claim that OpenBSD starts no services was rubbish. NOT
> that openbsd was rubbish.
> 
> > > an OpenBSD user, I felt I should point out that he was the one
> > > full of rubbish.  I really don't care whether people think it's
> 
> your the own who is full of it Jacob.
> 
> > If you only wanted to talk about apt-get you should've stuck to it.
> 
> yup.
> 
> > > a good idea or not.  I just wish they'd discuss the issue I'm talking
> > > about.  I mean really, Ethan claimed I never installed OpenBSD.  How
>
 > > could he have ever known whether or not that is true?  Someone called 
> > > ME a troll!?!?!?!?! 
> 
> because you (Jacob) made it quite clear you don't know anything about
> OpenBSD by making claims about it which are not true at all.
> 
> -- 
> Ethan Benson
> http://www.alaska.net/~erbenson/
Reply to: