[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Debian secure by default?

Ron Johnson wrote:
Hash: SHA1

On 05/25/08 14:28, Damon L. Chesser wrote:
Employees running amok.

What about when Spock runs amok?  How will a firewall help?

of course, it will not, but that is what proper user permission/sudo config is all about. NOTHING will protect you against THE system admin going over to the dark side. But an internal firewall will stop the "casual" snooper looking for mischief. Of course, we all know, the more secure you make it, the less "user friendly" and usable it is. Lines must be drawn, decisions made, policies/trade offs accepted. As for "debian more secure by default", that is what the sys admin is for. You want firewalls stopping everything, set it up. You want box foo walled off, wall it off. (all this added just so we know what we disagree on). But working for a large business, you do have to take the staff into consideration (as a threat). That geek in sales, might have a grudge to bare. That is ALL I was commenting on. You MIGHT want to erect a firewall internally to protect server foo from him, you might not.
- --
Ron Johnson, Jr.
Jefferson LA  USA

ESPN makes baseball players better.
Version: GnuPG v1.4.6 (GNU/Linux)


Damon L. Chesser

Reply to: