On Feb 3, 2005, at 1:09 AM, Stewart Stremler wrote:
My biggest concern isn't really the default configuration -- it's the user community. A user community that demands all the bells and whistles will be hard to train to accept a locked-down system by default. "Badly configured" may be what the user community *demands*.
I discovered, much to my chagrin, that I now have to actively consider the "default" or "suggested" installation's security settings when using a freshly installed system. It took me no less than 20 minutes of troubleshooting to realize that yes, Samba was running, no, the windows systems weren't buggered, but look! iptables was configured with rules. Ahh, system-config-securitylevel to the rescue.
Used to be a non-issue, which was part of the cause of the "cracked in 10 minutes" linux boxen.
Even bit me on my PowerBook, with OS X's built-in firewall.
It's worth it in the end, though.
Gregory
-- Gregory K. Ruiz-Ade <[EMAIL PROTECTED]> OpenPGP Key ID: EAF4844B keyserver: pgpkeys.mit.edu
PGP.sig
Description: This is a digitally signed message part
--
KPLUG-List mailing list [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
