[linux-delhi] Raju's Security chat

Wed, 31 May 2000 02:38:07 -0700 

<Raju> Chap: It's funny, but recently security focus
 released a security summary for 1999, and Linux came
 out as the second most insecure OS after Windows.
 However, this is because (a) they bundled all the Linux
 distributions into one category, and (b) Linux is open
 source so it's easier to find holes in it. Of course, they
 get plugged quicker too, and that's what the important
 thing is. In general, I'd say that Linux is more secure
 since it has the security problems.

        This is in case the guy is using standard dist which are not
really made for the purpose of securing it
        OpenBSD is very secure and they pro activly work for it.
But fear not there is a dist in development phase
 Its called LNX 
        The distribution should be designed with a pro-active, OpenBSDish attitude 
about
security--services are only enabled when they need to be, TCP Wrappers are used
by default, IDS installed by default, etc. Preferably, it could also have integrated
crypto, advanced authentication, etc. 

Inherently insecure packages like SVGAlib and dosemu would not be an option.
There is also no need for X, KDE, GNOME, etc. (Okay, maybe bsd-games and
nethack, but no more!) By keeping the number of included packages small, the
system will be more managable (for both the distro maintainers and for users), more
auditable, and hence, more stable and secure. 
        Pro-active attitude towards security 
         Integrated crypto 
         Thoroughly audited for security 
         Well-designed administrative tool 
         LVM, Logical Volume Manager 
         NIM, Nwork Install Manager (Haven't used it, but it sounds good--it's
         like RH kickstart on steriods. 
         Self-rebuilding; easy updating with 'cvsup; make world'. 
         Periodic system check scripts 
  + The linux code is being audited for security

If anybody is intersted in contibuting
        goto : irc.debian.org join #lnxs
But there are two dists which will secure you to some extent
        1) ROCK Linux 
        2) kha0s               
-- 
Everyone needs a little love sometimes; stop hacking and fall in love.
God is real unless declared integer.
And remember, there is no spoon...                  



__________________________________________________
Do You Yahoo!?
Talk to your friends online with Yahoo! Messenger.
http://im.yahoo.com

The mailing list archives are available at 
http://lists.linux-india.org/cgi-bin/wilma/linux-delhi/

Reply via email to