Hello! A long time ago, there was a discussion on this mailing list about whether the security of an installed OS would be improved by the absence of its comp*[.tgz] and x*[.tgz] subsystems. I don't remember the exact details, but it seems to me that Theo de Raadt gave the final answer in that discussion.
Unfortunately, I couldn't find that thread on marc.info. Does any of the old-timers remember and could send me the link? I need that link to the discussion for authoritative arguments in the context of discussing the security of an OS that processes personal data (and possibly other critical information). — Alex
