[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: secure installation

Pat <paparsoss@gmail.com> writes:

>  1) No firewall setup during the install process, as it would be a simple
>  matter to run lokkit at the end of the install I fail to see why this is
>  not done.

A default install should simply not listen to the network, at which point
a firewall is pointless complexity.  I believe portmap is already
listening only to localhost and inetd doesn't run if there are no services

Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to: