Re: default security
I'd agree with your comments. I being looking at
OpenBSD (for various reasons) and the default setup is
reasonable secure (there are still some things left on
, which supprised me). Not sure if Debian needs to go
as far as OpenBSD but I think that it is a good
referance base
Jon
--- Tarjei <tarjei@nu.no> wrote:
> Debian being what it is, are there any reasons why
> the debian bind
> package should not be chroot as the default
> instalation?
>
> One thing that might be a good idea, would be a
> security review of the
> main debian packages. It's probably beeing done for
> some already, but I
> would guess a lot of debian packages could benefit
> from even stricter
> default setups. For example, maybe libsafe should be
> default inn all
> installs.
>
> I know this would take some time to implement, but I
> think it would help
> the image of debian and linux over time. I'm often
> frustrated that the
> big distros (rh, mandrake) doesn't do more to harden
> their distros. For
> example the default install of ssh in RH still
> provides both ssh1 and
> ssh2 & root login.
>
> Tarjei
>
__________________________________________________
Do You Yahoo!?
Send FREE video emails in Yahoo! Mail!
http://promo.yahoo.com/videomail/
Reply to: