On Sun, 2003-02-16 at 02:53, et wrote: > On Saturday 15 February 2003 04:32 am, Robert Wideman wrote: > > >> I'd tend to reckon because MDK is being designed and marketed as a > > >> desktop distro instead of a server distro - hence the emphasis on > > >> desktop stuff and not on dev stuff or server security stuff...but that's > > >> on my eyeballs... > > > > True. But there are still some security measures that you would want to be > > able to take. > > Win2k/XP/etc has IIS installed on them to be servers..... > > Rob > > > Win2k/XP/etc has IIS installed on them to be servers....do you consider this a > good thing? or a secure thing? >
M$ did this for "web sharing" and the likes - and to give "workstations" the ability to have/host their own stuff - but overall, given the record and design of IIS, I don't think it's a good thing at all - it's like a "carrot dangling in front of" their users. A bad carrot. A rotting nasty carrot that might LOOK good but carries with it way too many problems and tastes bad in the end. Imagine (as I've already witnessed) a bug aimed at IIS, and it penetrates a corporate environment where you have mostly NT 4.0 workstations and Win2k workstations and many of them have the IIS crap not only turned ON (or installed) but are being used by the employees for testing and for other silly things (aside from the fact that they're all sharing drives and the likes) - and in comes the bug, and whammo! Each and every one of them is down down down down - and their segment on the network is so saturated that their cable has to be yanked from the FDDI - then you have to go through each and every machine and not just turn off IIS, but clean the damn thing to boot, and then take away administrative privileges for all the users (explaining to departments heads as to why every few minutes)... Not a nice picture - and I've had to be faced with it more than five times already...(MCI in Richardson, TX was a nightmare network environment - they still have token-ring in some areas, BTW) -- Sun, 16 Feb 2003 07:55:01 +1100 7:55am up 14:45, 4 users, load average: 0.72, 0.22, 0.32 ------------------------------------------------------------------ | __ __ | kuhn media australia | | / ,, /| |'-. | http://kma.0catch.com | | .\__/ || | | |=================================| | _ / `._ \|_|_.-' | stephen kuhn | | | / \__.`=._) (_ | email: [EMAIL PROTECTED] | | |/ ._/ |"""""""""| | email: [EMAIL PROTECTED] | | |'. `\ | | | icq: 5483808 | | ;"""/ / | | | | | smk ) /_/| |.-------.| | mobile: 0410-728-389 | | ' `-`' " " | Berkeley, New South Wales, AU | ------------------------------------------------------------------ linux user:267497 * RH 8.0 * PC/Mac/Linux/Networking/Consulting ------------------------------------------------------------------ We don't claim Interactive EasyFlow is good for anything -- if you think it is, great, but it's up to you to decide. If Interactive EasyFlow doesn't work: tough. If you lose a million because Interactive EasyFlow messes up, it's you that's out the million, not us. If you don't like this disclaimer: tough. We reserve the right to do the absolute minimum provided by law, up to and including nothing. This is basically the same disclaimer that comes with all software packages, but ours is in plain English and theirs is in legalese. We didn't really want to include any disclaimer at all, but our lawyers insisted. We tried to ignore them but they threatened us with the attack shark at which point we relented. -- Haven Tree Software Limited, "Interactive EasyFlow"
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
