I'd agree with your comments. I being looking at OpenBSD (for various reasons) and the default setup is reasonable secure (there are still some things left on , which supprised me). Not sure if Debian needs to go as far as OpenBSD but I think that it is a good referance base
Jon --- Tarjei <[EMAIL PROTECTED]> wrote: > Debian being what it is, are there any reasons why > the debian bind > package should not be chroot as the default > instalation? > > One thing that might be a good idea, would be a > security review of the > main debian packages. It's probably beeing done for > some already, but I > would guess a lot of debian packages could benefit > from even stricter > default setups. For example, maybe libsafe should be > default inn all > installs. > > I know this would take some time to implement, but I > think it would help > the image of debian and linux over time. I'm often > frustrated that the > big distros (rh, mandrake) doesn't do more to harden > their distros. For > example the default install of ssh in RH still > provides both ssh1 and > ssh2 & root login. > > Tarjei > __________________________________________________ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
