Re: Debian secure by default?



On Sat, 17 May 2008 06:42:57 +0530
Raj Kiran Grandhi <grajkiran@xxxxxxxxx> wrote:

Rico Secada wrote:
Hi.

Why is Debian not setup to be secure be default?

Not everyone is a security expert so imho the system should be fully
secured out-of-the-box.

Please elaborate on what you consider to be the insecure parts of a
default installation. Describe a process by which an etch system can
be compromised remotely. Obviously, the ability to become root by
tweaking the boot parameters from the grub screen does not count as a
vulnerability.


All I am saying is that it shouldn't be needed to harden anything.

http://www.debian.org/doc/manuals/securing-debian-howto/

--
Raj Kiran Grandhi
--
Politics is for the moment. An equation is for eternity.
-- Albert Einstein


--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact
listmaster@xxxxxxxxxxxxxxxx





--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx



Relevant Pages

  • Re: Debian secure by default?
    ... Raj Kiran Grandhi wrote: ... Why is Debian not setup to be secure be default? ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
    (Debian-User)
  • Re: OT: Safe to access SSH server from work?
    ... secure that would be:/ ... so that will be compromised on the client as well. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... Trouble? ...
    (Debian-User)
  • Re: chmod 670
    ... Raj Kiran Grandhi: ... To cause filesystem breakage? ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... Trouble? ...
    (Debian-User)
  • Re: Debian secure by default?
    ... Why is Debian not setup to be secure be default? ... Not everyone is a security expert so imho the system should be fully ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... Trouble? ...
    (Debian-User)
  • Re: Debian secure by default?
    ... Why is Debian not setup to be secure be default? ... Not everyone is a security expert so imho the system should be fully ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... Trouble? ...
    (Debian-User)