Re: secure installation
-----BEGIN PGP SIGNED MESSAGE-----
My intention wasn't to say a default firewall can never work, but
can't work for debian, given the community/ideology and existing
Ah, now we disagree: I just think you should have install profiles
and make reasonable, basic assumptions based on that profile. Uh,
disclosure of ignorance: it has actually been more than two years
since I installed debian myself - everything is virtualized so I just
get copies of a default install.
Anyway: for a workstation install: no firewall, install X, etc etc..
For a server: default 22 only, ssh only, no other processes but those
that are necessary to run the os.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (Darwin)
-----END PGP SIGNATURE-----