I'm no expert on risk assessment but. . . On Thursday, January 16, 2003, at 01:17 AM, Todd Pearsall wrote:
Currently my CD has a set of packges I'm likely to need and none of the packages I'm afraid a hacker could use against me. No ssh (only sshd), no lynx, no sniffers, etc.
sounds good
I do have the whole Bering modules tree from the 2.4.18 directory down on the CD with modules like smbfs, nfs and hundreds of others. Is that safe?
From what I know, that depends on what you think safe is but,
I don't know if it's a risk, but from a peace of mind perspective, why not just rip out all the non-nic and cdrom related modules?My goal in grabing the whole tree is to have every driver I could possibly need available. (All the firewalls are all Frankenstein machines build from spare parts with no consistency in HW). I guess I could weed out just the different net drivers...but pcmcia, usb and wireless stuff could be nice later...and who knows what else...
That way, you're prepared for different HW configurations for a basic Bering system, but you don't have to worry about anything else. Creating and sending out a new iso *if* you need more capability *sometime* in the future seems like a small price to pay on balance.
-arif
-------------------------------------------------------
This SF.NET email is sponsored by: A Thawte Code Signing Certificate is essential in establishing user confidence by providing assurance of authenticity and code integrity. Download our Free Code Signing guide:
http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0028en
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
