Re: services installed and running "out of the box"

To: debian-security@lists.debian.org
Subject: Re: services installed and running "out of the box"
From: Bernd Eckenfels <ecki@calista.eckenfels.6bone.ka-ip.net>
Date: Thu, 25 Sep 2003 03:42:16 +0200
Message-id: <[🔎] E1A2L96-0002T5-00@calista.inka.de>
In-reply-to: <[🔎] 20030925010126.GR3638@mathom.us>

In article <[🔎] 20030925010126.GR3638@mathom.us> you wrote:
> Until installing a package has the side effect of installing a network
> service. Having a default-deny-incoming firewall or some such would go a
> long way toward preventing accidental vulnerability exposure.

On the other hand this pretty much sounds like the idea MS had with the ICF,
where everybody laughed at, because MS was not able to ship a operating
system secure with closed ports by default.

BTW: speaking of secure by default, I was wearing my OpenSSH T-Shirt yesterday and I
thought actually I should add a sticker: 

"Secure by default, because disabled by default" :)

Greetings
Bernd
-- 
eckes privat - http://www.eckes.org/
Project Freefire - http://www.freefire.org/

Reply to:

References:
- Re: services installed and running "out of the box"
  - From: Michael Stone <mstone@debian.org>

Prev by Date: Re: FTP in general (Re: Watch out! vsftpd anonymous access always enabled!)
Next by Date: Re: The same debian - different packages
Previous by thread: Re: services installed and running "out of the box"
Next by thread: Re: services installed and running "out of the box"
Index(es):
- Date
- Thread