Re: A simple question FORK! Something that bugs me about net-installs and security



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 01/26/07 19:03, Hodgins Family wrote:
Many people are installing Debian "from the internet". Yet, the Securing
Debian Manual suggests no contact with the internet until the
installation is "secure."

The manual states that installing the OS off the web is not the best
idea (Section 3.3 found here:
http://www.debian.org/doc/manuals/securing-debian-howto/ch3.en.html )

Is the manual WRONG about net installs?

Did you *read* the link you posted?

3.3 Do not plug to the Internet until ready

The system should not be immediately connected to the Internet
during installation.
[snip]
If you cannot do this, you can set up firewall rules to limit
access to the system while doing the update (see Security
update protected by a firewall, Appendix F).

http://www.debian.org/doc/manuals/securing-debian-howto/ap-fw-security-update.en.html

Are net installs (let's say for a Desktop environment) totally without
vulnerability risks?

When, during an installation, do/should people think about
security/vulnerability issues of the software they are installing?

Actually, not much. Firewalling routers are $50 and do a reasonably
good job.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFus6nS9HxQb37XmcRAntCAKCM00OOHjG8XIy1BfsNZqOOjG1vXQCg2+hh
GWdbAo57hNENVUGg0Sb3QYQ=
=AzCV
-----END PGP SIGNATURE-----


--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx