Re: secure installation
Pat <paparsoss@gmail.com> writes:
> 1) No firewall setup during the install process, as it would be a simple
> matter to run lokkit at the end of the install I fail to see why this is
> not done.
A default install should simply not listen to the network, at which point
a firewall is pointless complexity. I believe portmap is already
listening only to localhost and inetd doesn't run if there are no services
enabled.
--
Russ Allbery (rra@debian.org) <http://www.eyrie.org/~eagle/>
Reply to: