I agree 100% with Ben. However, since this is a single-user desktop
machine, I understand the need for X. What you may want to do is build
into you PPP scripts to run a firewall script upon connection.
C-Ya,
Kenny
Benjamin Scott wrote:
>
> On Sat, 23 Jun 2001, Kenneth E. Lussier wrote:
> >> I took out the X,xdm, gnome stuff,lpd
> >
> > I missed this the first time. lpd is a dangerous service to run on an
> > internet connected system.
>
> X11 and XDM don't exactly have a stellar security record, either.
>
> I haven't heard anything about exploits on GNOME, but I'm sure that's just
> because no one's written any yet. GNOME components dump core when they're
> running right. I suspect breaking into an exposed GNOME would be like
> breaking into a corn field.
>
> Personally, I recommend a firewall which blocks all incoming connections by
> default. Then open holes for trusted services if you need to.
--
---------------------------------------------------
Kenneth E. Lussier
Geek by nature, Linux by choice
PGP KeyID 0xD71DF198
Public key available @ http://pgp.mit.edu
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
