On 20.07.2006, at 21:06, Gordon Seller wrote:
... > > Is Trustix really 'Secure Linux'? I would like to put it that way: every computer system is as secure as the admin is. If the admin is a joke, security is a joke from the moment he gets hands on the systems and starts setting them up. on the other hand, it is what tools you provide to the engineer. And I feel, as a long time trustix user, I know where the little bolts and nuts are, to tighten security. There isn't such info sheet for trustix, but as a reference what an admin should know about "his system" from memory, I want to refer to Ian Darwin's OpenBSD page. Your task is, to know about every service you run. If you run apache, proftpd or whatever, be sure that you could parse (in your mind) output of lsof and know if there is a file open that shouldn't be open. Trustix has experience in supplying a good base, to work with. I hope that stays like that in the future, and doesn't evolve into a full-blown-do-everything distro .... just my two cents ... matthias ps: and yes, I support the phrase: a package that isn't there can't be broken into .... _______________________________________________ tsl-discuss mailing list [email protected] http://lists.trustix.org/mailman/listinfo/tsl-discuss
