* Bernd Eckenfels <[EMAIL PROTECTED]> [001119 15:08]: > So dou u want to make the task-secure-system package conflict with > telnet-server? Since we also have secure telnet severs (telnetd-ssl). So the > problem is we want to make sure that task-secure-system also removes > insecure packages (at least suggests you too) but does not block the > sysadmin who knows what he is doing, right?
Bernd, what I would think a task-secure-system might want to do instead is send daily emails to root about every package on the system that isn't specifically listed in files such as /etc/task-secure-system-secure-packages and /etc/task-secure-system-exempt-packages. (-secure-packages installed by task-secure-system, -exempt-packages installed and mofified by root because root gets tired of getting emails about packages regularly.) (I don't know what sort of comment we are making if we claim a package to be secure -- that might be more than we wish to call the individual packages. :) -- ``Oh Lord; Ooh you are so big; So absolutely huge; Gosh we're all really impressed down here, I can tell you.''
