From owner-freebsd-security  Wed Aug 15  7:24:28 2001
Delivered-To: freebsd-security@freebsd.org
Received: from mixtim.homeip.net (cg392862-a.adubn1.nj.home.com [65.2.79.221])
	by hub.freebsd.org (Postfix) with ESMTP id 5006F37B401
	for <security@freebsd.org>; Wed, 15 Aug 2001 07:24:16 -0700 (PDT)
	(envelope-from michael@mixtim.homeip.net)
Received: by mixtim.homeip.net (Postfix, from userid 1000)
	id 49CD498FC; Wed, 15 Aug 2001 10:24:15 -0400 (EDT)
Date: Wed, 15 Aug 2001 10:24:15 -0400
From: Mixtim <mixtim@mixtim.homeip.net>
To: Eric Anderson <anderson@centtech.com>
Cc: security@freebsd.org
Subject: Re: cvs commit: src/etc inetd.conf
Message-ID: <20010815102415.A5942@mixtim.homeip.net>
Reply-To: mixtim@mixtim.homeip.net
References: <20010815134852.B16184@zerogravity.kawo2.rwth-aachen.d> <59836.997879734@axl.seasidesoftware.co.za> <20010815100621.A5853@mixtim.homeip.net> <3B7A8424.CBFF1F30@centtech.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <3B7A8424.CBFF1F30@centtech.com>; from anderson@centtech.com on Wed, Aug 15, 2001 at 09:16:04AM -0500
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

On Wed, Aug 15, 2001 at 09:16:04AM -0500, Eric Anderson wrote:
> Here's the thing.  I thought that was a great idea - until I started
> installing (ick) RedHat 7.1 on a few machines here at the office.  It
> has everything closed off, so remote access is not possible off the hat
> (ssh will work, but you have to add a local non-root user).

I should have stated ssh as an exception. You almost always have to have
it running. Of course, logging in as root and executing the sshd command
only takes a few seconds.

> Plus, anyone installing FreeBSD should have a good idea that they are
> installing an OS that has many servers running, some possibly easy to
> hack.

If CodeRed taught us anything it is that there are more than enough
clueless admins on the net. Just because someone installed FreeBSD
doesn't mean they are that much more intelligent.

> It isn't up to the programmers of the operating system to protect the
> users of it.

Then why is there a security@freebsd.org address?

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message