secure installation

To: debian-security@lists.debian.org
Subject: secure installation
From: Pat <paparsoss@gmail.com>
Date: Wed, 15 Aug 2007 14:23:06 -0500
Message-id: <[🔎] 2e4e9dbd0708151223q2f88f8e1m7689fb2912ca16fd@mail.gmail.com>

There are a few security issues I have noticed about debian's installation.
1) No firewall setup during the install process, as it would be a simple
matter to run lokkit at the end of the install I fail to see why this is not
done.
2) Rpfilter and tcp syncookies are not enabled by default. Again this is a
simple correction, and indeed has been mentioned in several open source
linux guides for years.
3) Do we really need portmap, inetd, or nfs running by default on our
workstations?

Reply to:

Follow-Ups:
- Re: secure installation
  - From: Henri Salo <fgeek@fgeek.fi>
- Re: secure installation
  - From: Ian McDonald <iam@st-andrews.ac.uk>
- Re: secure installation
  - From: Russ Allbery <rra@debian.org>
- Re: secure installation
  - From: Celejar <celejar@gmail.com>

Prev by Date: Re: verifying archive signature keys?
Next by Date: Re: secure installation
Previous by thread: Re: verifying archive signature keys?
Next by thread: Re: secure installation
Index(es):
- Date
- Thread