hadly hadened (Boston dialect) if Guido is not watching it.
Mehma
===
On Sun, Mar 14, 2010 at 10:07 PM, Han Boetes wrote:
> Chris Bennett wrote:
> > You people have no sense of where security really lies at!
> > If you don't remove the hard drive, there is no security at all!
>
> I simply put m
Chris Bennett wrote:
> You people have no sense of where security really lies at!
> If you don't remove the hard drive, there is no security at all!
I simply put my servers into armored concrete. After that I dump
them somewhere in the middle of the ocean where the level is at
least 3 km. That's h
On 3/14/2010 5:32 PM, bofh wrote:
Amateur. I remove the entire computer for complete security.
Sloppy work. You didn't delete the computer's account from Active
Directory.
On Sun, 14 Mar 2010 22:54:55 +0100 Robert
wrote:
> Chris Bennett wrote:
> > Matthias Kilian wrote:
> >> On Sun, Mar 14, 2010 at 08:51:05PM +0100, Otto Moerbeek wrote:
> >>
> > ( http://geodsoft.com/howto/harden/OpenBSD/remove_files.htm )
> >
> He forgot to remove sh(1), un
Chris Bennett wrote:
Matthias Kilian wrote:
On Sun, Mar 14, 2010 at 08:51:05PM +0100, Otto Moerbeek wrote:
( http://geodsoft.com/howto/harden/OpenBSD/remove_files.htm )
He forgot to remove sh(1), unvis(1) and chmod(1).
and getty(8), login(8), and /bsd
Better remove th
On Sun, Mar 14, 2010 at 4:31 PM, Chris Bennett <
ch...@bennettconstruction.biz> wrote:
> You people have no sense of where security really lies at!
> If you don't remove the hard drive, there is no security at all!
>
>
Amateur. I remove the entire computer for complete security.
--
http://www.
Matthias Kilian wrote:
On Sun, Mar 14, 2010 at 08:51:05PM +0100, Otto Moerbeek wrote:
( http://geodsoft.com/howto/harden/OpenBSD/remove_files.htm )
He forgot to remove sh(1), unvis(1) and chmod(1).
and getty(8), login(8), and /bsd
Better remove the mainboard. That's w
- Matthias Kilian wrote:
> On Sun, Mar 14, 2010 at 08:51:05PM +0100, Otto Moerbeek wrote:
> > > > ( http://geodsoft.com/howto/harden/OpenBSD/remove_files.htm )
> > >
> > > He forgot to remove sh(1), unvis(1) and chmod(1).
> >
> > and getty(8), login(8), and /bsd
>
> Better remove the mainbo
On Sun, Mar 14, 2010 at 08:51:05PM +0100, Otto Moerbeek wrote:
> > > ( http://geodsoft.com/howto/harden/OpenBSD/remove_files.htm )
> >
> > He forgot to remove sh(1), unvis(1) and chmod(1).
>
> and getty(8), login(8), and /bsd
Better remove the mainboard. That's way more secure and takes less
eff
On Sun, Mar 14, 2010 at 08:36:04PM +0100, Matthias Kilian wrote:
> On Sun, Mar 14, 2010 at 05:43:43PM +0200, Ozgur Kazancci wrote:
> > Is this a joke?
>
> No, just complete idiocy. The person who wrote this bullshit clearly
> qualifies for the german parliament.
>
> > (Removing OpenBSD unnecessa
On Sun, Mar 14, 2010 at 05:43:43PM +0200, Ozgur Kazancci wrote:
> Is this a joke?
No, just complete idiocy. The person who wrote this bullshit clearly
qualifies for the german parliament.
> (Removing OpenBSD unnecessary and/or dangerous files)
>
> http://geodsoft.com/howto/harden/OpenBSD/remove.
There are different definitions of "security". When OpenBSD is
advertised as being secure, it means that users do not have access to
root.
In contrast, this person appears to equate security with total
authoritarian control of what users can do. My favorite quote from
http://geodsoft.com/howto
Ozgur Kazancci writes:
> Is this a joke?
As far as I can tell from browsing the site, he meant it as he wrote
it. It's possible this fit his particular application well, but I
find it a bit hard right off to tell what the real purpose was.
More importantly, note the dates and versions. This
On Sun, Mar 14, 2010 at 5:26 PM, Robert wrote:
>
> There is nothing wrong with cripling an os by deleting files, if one
> isn't hurting enough yet.
> If some random textfile referencing 2.8 helps you achieve what you
> want, go for it.
There are very good reasons to remove files from an operating
On Sun, 14 Mar 2010 17:43:43 +0200 (EET)
Ozgur Kazancci wrote:
> Hello.
> Is this a joke?
Uh, yes, i guess your mail could be considered a joke by some people. (:
There is nothing wrong with cripling an os by deleting files, if one
isn't hurting enough yet.
If some random textfile referencing
On Sun, Mar 14, 2010 at 10:43 AM, Ozgur Kazancci
wrote:
> Hello.
> Is this a joke?
>
> (Removing OpenBSD unnecessary and/or dangerous files)
Welcome to the internet. Caution: idiots ahead.
Well that depends really.
If you dont need something why have it on you're machine?
Even if it's not a networked application it may make life easier
one someone does crack their way into you're machine.
Personally I like to lock things down as much as possible, just
because I find that in the
On Thu, Jun 26, 2008 at 07:35:40PM +0200, [EMAIL PROTECTED] wrote:
> I try to get a better understanding of hardening OpenBSD
> systems and have been digging man pages, several books (incl.
> "The design and implementation of the 4.4BSD operating system")
> and the archives (but not the sources due
On 6/26/08, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> 1) Why do flags not prevent the mount system call from using
> protected directories as mount points?
>
> I would guess that flags just "protect at inode level" while
> mount "happens at vnode level".
Exactly.
> I am just wondering w
On 11/5/06, Joachim Schipper <[EMAIL PROTECTED]> wrote:
On Sun, Nov 05, 2006 at 11:05:31AM -0500, Jon Radel wrote:
> Peter N. M. Hansteen wrote:
>
> > A word of caution to people who take it upon themselves to write docs:
> >
> > When you don't feel like maintaining the material any longer,
> >
On Sun, Nov 05, 2006 at 11:05:31AM -0500, Jon Radel wrote:
> Peter N. M. Hansteen wrote:
>
> > A word of caution to people who take it upon themselves to write docs:
> >
> > When you don't feel like maintaining the material any longer,
> > *PLEASE* have the decency to remove it from the net,
On Sat, 4 Nov 2006 19:55:50 -0500, Nick Guenther wrote
> On 11/4/06, STeve Andre' <[EMAIL PROTECTED]> wrote:
> > On Saturday 04 November 2006 19:09, Nick Guenther wrote:
> > > Just came across this article:
> > > http://geodsoft.com/howto/harden/OpenBSD/services.htm
> > >
> > > So is he right?
> >
Peter N. M. Hansteen wrote:
> A word of caution to people who take it upon themselves to write docs:
>
> When you don't feel like maintaining the material any longer,
> *PLEASE* have the decency to remove it from the net, unless of
> course you can arrange for somebody else to update your b
"Nick Guenther" <[EMAIL PROTECTED]> writes:
> This list has made me skeptical of claims about hardening, especially
> when done independantly. In particular, the article says
> "The most interesting configuration choice in the default OpenBSD
> install is portmap and some of the related RPC servic
On 11/5/06, Otto Moerbeek <[EMAIL PROTECTED]> wrote:
Come on, can't you do a little reseach? We have cvs(web).
Okay, let's see:
"CVS log for src/etc/rc.conf
...
Revision 1.78 / (download) - annotate - [select for diffs] , Fri Aug 2
23:27:33 2002 UTC (4 years, 3 months ago) by deraadt
Bran
On Sat, 4 Nov 2006, Nick Guenther wrote:
> On 11/4/06, STeve Andre' <[EMAIL PROTECTED]> wrote:
> > On Saturday 04 November 2006 19:09, Nick Guenther wrote:
> > > Just came across this article:
> > > http://geodsoft.com/howto/harden/OpenBSD/services.htm
> > >
> > > So is he right?
> > >
> > > -Nick
On 11/4/06, STeve Andre' <[EMAIL PROTECTED]> wrote:
On Saturday 04 November 2006 19:55, Nick Guenther wrote:
> On 11/4/06, STeve Andre' <[EMAIL PROTECTED]> wrote:
> > On Saturday 04 November 2006 19:09, Nick Guenther wrote:
> > > Just came across this article:
> > > http://geodsoft.com/howto/hard
On Saturday 04 November 2006 19:55, Nick Guenther wrote:
> On 11/4/06, STeve Andre' <[EMAIL PROTECTED]> wrote:
> > On Saturday 04 November 2006 19:09, Nick Guenther wrote:
> > > Just came across this article:
> > > http://geodsoft.com/howto/harden/OpenBSD/services.htm
> > >
> > > So is he right?
>
On 11/4/06, STeve Andre' <[EMAIL PROTECTED]> wrote:
On Saturday 04 November 2006 19:09, Nick Guenther wrote:
> Just came across this article:
> http://geodsoft.com/howto/harden/OpenBSD/services.htm
>
> So is he right?
>
> -Nick
It seems that this was written to cover OpenBSD 2.9, and revisied
fo
On Saturday 04 November 2006 19:09, Nick Guenther wrote:
> Just came across this article:
> http://geodsoft.com/howto/harden/OpenBSD/services.htm
>
> This list has made me skeptical of claims about hardening, especially
> when done independantly. In particular, the article says
> "The most interest
Nick Guenther wrote:
> Just came across this article:
> http://geodsoft.com/howto/harden/OpenBSD/services.htm
>
> This list has made me skeptical of claims about hardening, especially
> when done independantly. In particular, the article says
> "The most interesting configuration choice in the def
On Wed, Mar 08, 2006 at 01:58:18PM -0700, Bob Beck wrote:
> * Joachim Schipper <[EMAIL PROTECTED]> [2006-03-08 12:13]:
>
> > 1. Use sudo exclusively - set an empty or nonsense root password
>
> Stupid <...>
> > 2. Use public key authentication only for sshd(8), and restrict
> > whic
Thanks to the responders for their insights. I have a lot to consider
here. Honestly, I did not feel comfortable removing a ton of
executables. I'll probably put back the source I removed as well.
--
Peter
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
* Joachim Schipper <[EMAIL PROTECTED]> [2006-03-08 12:13]:
> 1. Use sudo exclusively - set an empty or nonsense root password
Stupid - if there is only one user with sudo-ability then
this is the same as just having root. if there are more, there are
now two passwords out there to g
On Tue, Mar 07, 2006 at 11:42:23PM -0500, Peter wrote:
> Hi. I've set up several firewalls with OpenBSD but I have yet to go to
> any extremes regarding "hardening". So far I have updated the source
> (stable), recompiled the system & kernel, removed the source code,
> turned off inetd, and set u
On Tuesday 07 March 2006 23:42, Peter wrote:
> Hi. I've set up several firewalls with OpenBSD but I have yet to go to
> any extremes regarding "hardening". So far I have updated the source
> (stable), recompiled the system & kernel, removed the source code,
> turned off inetd, and set up a tight
36 matches
Mail list logo
