Blah blah blah
Q. Is NT server easier to install?
A. No, it is long and arduous.
Q. Does NT require configuration?
A. Absolutely.
Q. Is NT secure out of the box?
A. Absolutely not.
Q. How often is MS software exploited?
A. Quite often.
Q How long does it take MS to admit and fix bugs?
A. Along time, if they decide to care.
Do you get the point!
RedHat 7.1 is simple to install as a workstation. As a server is is much
easier
to install and secure than most other operating systems. I applaud
RedHat for
moving in the direction of security out of the box.
Linux is not for everyone, your friends are probably happy with their
current OS.
Most people are not able to maintain a server and only need a
workstation. For the
people who need to run as a server, they should be knowledgeable about
security.
I don't want your machine to become compromised and start attacking my
network.
As for one of your earlier posts, about port 25 only talking ESMTP :
Q. How do you think the exploits are performed?
A. They use the ESMTP commands to break in.
RedHat has a service that will allow updates to happen automatically, so
that
it is easier for people with out administration experience to keep up to
date.
In the past I have had to manually rebuild and configure a lot of
software,
including sendmail, to secure servers. RedHat has just made my life
easier. As a
professional Unix/Linux administrator I have 15 years experience with
security. I
also have to maintain Microsoft and Macintosh servers, and am familiar
with the
service packs and security issues on those platforms as well.
Security is good!
If you need to check your mail use an email client. If your machine
needs to receive
mail atomically then you have already figured out how. Most people don't
have access
to a 24/7 server enabled internet connection, and are not allowed by
their provider
to run as a server.
I will agree that RedHat should have better information available when
they change
the default configuration of software. Please remember oversights happen
and maybe
their will be additional information in the next release.
Sorry if this message offends you, but I am sure everyone who gets this
list can
see the point you have raised.
Guy Fraser
Vladimir G Ivanovic wrote:
>
> "JLT" == Jason L Tibbitts, <Jason> writes:
>
> >>>>>> "VGI" == Vladimir G Ivanovic <[EMAIL PROTECTED]> writes:
>
> VGI> What exactly are you suggesting? That we all turn off sendmail because
> VGI> of some as yet unknown vunerablity?
>
> JLT> I do not believe that you could infer that from my message,
>
> You're free to believe whatever you wish, but yes, that is what I
> inferred from your message (reproduced below). Apparently that wasn't
> your intent, but it was what I received.
>
> [...]
>
> JLT> Of course I receive the security alerts, as I am perfectly capable of
> JLT> enabling mail serving functionality on machines which need it. You don't
> JLT> seem to have made a point, though.
>
> I did, but you missed it. My point was that Red Hat has a well
> established process for fixing security issues in the field.
>
> --- Vladimir
>
> Vladimir G. Ivanovic http://www.leonora.org/~vladimir
> 2770 Cowper St. [EMAIL PROTECTED]
> Palo Alto, CA 94306-2447 +1 650 678 8014
>
> -------
> To: [EMAIL PROTECTED]
> Subject: Re: Sendmail Weirdness, Or Welcome to WinHat 7.1
> From: Jason L Tibbitts III <[EMAIL PROTECTED]>
> Date: 17 Jul 2001 13:39:35 -0500
>
> >>>>> "VGI" == Vladimir G Ivanovic <[EMAIL PROTECTED]> writes:
>
> VGI> "Connect to my machine"? How? You can telnet to port 25, but all you
> VGI> can do is talk ESMTP. Is that a security risk?
>
> It may be, if a vulnerability is discovered tomorrow. If that happens,
> then what does Red Hat do? Get every single person who has installed Red
> Hat Linux to upgrade to the fixed package? Or sleep well knowing that the
> default installation is at least protected from nonlocal attacks? Sure,
> sites who turned it back on will have to either shut it off, upgrade to a
> fixed package, or be insecure, but at least the problem has been
> significantly diminished.
>
> Won't happen? It's happened before. (Not just with Sendmail.)
>
> - J<
>
> _______________________________________________
> Seawolf-list mailing list
> [EMAIL PROTECTED]
> https://listman.redhat.com/mailman/listinfo/seawolf-list
--
There is a fine line between genius and lunacy, fear not, walk the
line with pride. Not all things will end up as you wanted, but you
will certainly discover things the meek and timid will miss out on.
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
