Luke Kanies wrote:

I have literally never worked at an organization that had any clue what its configurations should be, and they wouldn't know how to validate them if required by law. Most installations are not sufficiently large, and most sysadmins are not sufficiently competent to use tools like this anyway.

This dismisses an important kind of validation, sanity checks, which
can occur *without* declaring policies in advance. E.g., are your
settings reasonable? Do your mx records point to mail servers? Do your
filesystem mounts point at fileservers? Etc. This kind of tool could be
used by anyone, but we are too busy solving our own problems to provide
something "practical" for people with less expertise than us, that might
not be "practical" for us because we need more functionality than that.

Dr. Alva L. Couch
Associate Professor of Computer Science
Associate Professor of Electrical and Computer Engineering
Tufts University, 161 College Avenue, Medford, MA 02155
Phone: +1 (617) 627-3674
lssconf-discuss mailing list

Reply via email to