Re: Debian secure by default?

To: debian-user@lists.debian.org
Subject: Re: Debian secure by default?
From: Mike Bird <mgb-debian@yosemite.net>
Date: Sat, 17 May 2008 08:23:41 -0700
Message-id: <[🔎] 200805170823.41101.mgb-debian@yosemite.net>
In-reply-to: <[🔎] 20080517113229.b0edc8c5.coolzone@it.dk>
References: <[🔎] 20080517024103.1d4645ea.coolzone@it.dk> <[🔎] 482E3119.1090603@gmail.com> <[🔎] 20080517113229.b0edc8c5.coolzone@it.dk>

On Sat May 17 2008 02:32:29 Rico Secada wrote:
> I am not saying that Debian isn't secure per say, but things like
> removing SUID and SGID from files where they generally aren't needed as
> default imho is better. If someone needs SUID then he has to set it.
>
> Locating what files that it is generally safe to remove SUID and SGID
> from isn't that easy.

Agreed.

That's why, unless you have a lot of time and experience, it's much
more secure to run a major distribution that has been reviewed by many
people rather than trying to make all of these decisions yourself.

If you should ever find a security problem with Debian, please be sure
to let us know via a channel appropriate to the level of the problem.

--Mike Bird

Reply to:

Follow-Ups:
- Re: Debian secure by default?
  - From: Rico Secada <coolzone@it.dk>

References:
- Debian secure by default?
  - From: Rico Secada <coolzone@it.dk>
- Re: Debian secure by default?
  - From: Raj Kiran Grandhi <grajkiran@gmail.com>
- Re: Debian secure by default?
  - From: Rico Secada <coolzone@it.dk>

Prev by Date: Re: Nokia D211 cardphone driver compiling on Etch
Next by Date: Re: Firefox irresponsible
Previous by thread: Re: Debian secure by default?
Next by thread: Re: Debian secure by default?
Index(es):
- Date
- Thread