Re: secure installation
On Wed, 15 Aug 2007 14:23:06 -0500
Pat <firstname.lastname@example.org> wrote:
> There are a few security issues I have noticed about debian's
> 1) No firewall setup during the install process, as it would be a
> simple matter to run lokkit at the end of the install I fail to see
> why this is not
> 2) Rpfilter and tcp syncookies are not enabled by default. Again
> this is a simple correction, and indeed has been mentioned in several
> open source linux guides for years.
> 3) Do we really need portmap, inetd, or nfs running by default on our
There shouldn't be any ports open to internal network after
installation. Where do you need firewall after installation when you
can make one i.e. with iptables?
- Henri 'fgeek' Salo