On Thu, 2004-12-02 at 18:21 -0500, Douglas Ward wrote: > Olaf van der Spek wrote: > > > Hi, > > > > I installed Debian Sarge system with a Samba server and that went great. > > But I was just wondering, why is an NTP client not installed by > > default during such an install to make sure the time is in sync? > > > It's more secure to provide a default install with no services running > than an install with a variety of services; if a user wants a service, > he or she can install it. (The rationale is that if a user knows a > service is wanted, he or she also knows its security risks.) If there > were a remote exploit available for ntp, users not knowing ntpd is > installed will be less likely to update the package in an expediated > manner than users that willingly installed ntp. Why create such a > potential problem? (I believe the user must also choose to install > apache, mysql, samba, ssh, etc. for the same reason.) Besides, not every box (or network, for that matter) is connected to the internet. -- ----------------------------------------------------------------- Ron Johnson, Jr. Jefferson, LA USA PGP Key ID 8834C06B I prefer encrypted mail. "Outside of the killings, Washington has one of the lowest crime rates in the country." Marion Barry
Attachment:
signature.asc
Description: This is a digitally signed message part