Jay Turner wrote:
What do people need/want in RHEL6?
I know that 'it just works' is a measure for some of product maturity, especially in a desktop OS. But security is a high priority for many of your server enterprise OS customers, and the 'make-everything-easy' approach ends up making things hard, when your customers are having to individually 'reinvent the wheel' as it were, of securing RHEL.
I suspect many of us would love to see a minimal, hardened installation option, or version, or channel or however it might be implemented, but out-of-the-gate it would substantially meet configuration 'guidelines' such as <http://www.nsa.gov/snac/os/redhat/rhel5-guide-i731.pdf>. (or those from CIS, NIST, etc) "Guidelines" is in quotes, because these publications are becoming definitive about secure operation, and failing to implement some of the recommendations is right NOW being cited in security audit findings. Let your customers add and enable and configure just the functionality they need.
As an aside, I'd also like to see expanded RedHat involvement with the guideline developers, so there's less bad or arbitrary advice in them, or recommendations that directly contradict RedHat documentation.
also easy to please, Ed _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list
