On Tue, Jan 01, 2002 at 07:17:33AM +1100, Penguin wrote:
| Debian website says 2.4 is not really mature enough yet, does this mean
| mature enough security wise also?
2.4 is newer than 2.2 and (therefore) hasn't been tested as much.
| I am trying to figure out what kernel I should use, for the next 6 months at
| least anyway. Security is my main objective, most other things can go to the
| wall if they conflict.
First enumerate all your requirements and prioritize them. Then
enumerate all the tradeoffs.
| I would prefer iptables, since I know it has a LOG option to record all
| incoming and outgoing like a packet sniffer for my modem dialup connection -
| does ipchains with the 2.2 kernel have a comparable option? I want to see if
| when I log into my POP3 server if my user and pass is sent in clear, etc etc.
| I want to see everything passing on the wire.
|
| Can I use iptables with a 2.2 kernel?
No.
| Given that I am super paranoid, maybe my old Debian 2.2r2 Potato is the best
| bet for me. Is there any reason why I may not be able to upgrade X to XFree
| 4.1 with this version of Potato?
To get XFree 4.1 you either need to compile it yourself, or you need
to upgrade a whole bunch of other packages (libraries) too. I think
libc6 is included in the list of packages you need to upgrade.
I'm using kernel 2.4.17 and XFree86 4.1 (a woody/sid mixture) and am
having no problems. I've been using kernel 2.4 for a while now (9,
10, 13, 16, and 17).
-D
--
If your company is not involved in something called "ISO 9000" you
probably have no idea what it is. If your company _is_ involved in ISO
9000 then you definitely have no idea what it is.
(Scott Adams - The Dilbert principle)
