From owner-freebsd-security Sat Sep 23 21:29:56 2000 Delivered-To: freebsd-security@freebsd.org Received: from lariat.org (lariat.org [12.23.109.2]) by hub.freebsd.org (Postfix) with ESMTP id 23E3B37B43E for ; Sat, 23 Sep 2000 21:29:53 -0700 (PDT) Received: from mustang.lariat.org (IDENT:ppp0.lariat.org@lariat.org [12.23.109.2]) by lariat.org (8.9.3/8.9.3) with ESMTP id WAA25743; Sat, 23 Sep 2000 22:27:56 -0600 (MDT) Message-Id: <4.3.2.7.2.20000923222349.04919900@localhost> X-Sender: brett@localhost X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Sat, 23 Sep 2000 22:27:54 -0600 To: Wes Peters , Drew Derbyshire From: Brett Glass Subject: Re: sysinstall DOESN'T ASK, dangerous defaults! Cc: freebsd-security@FreeBSD.ORG In-Reply-To: <39CC5820.27C06E6F@softweyr.com> References: <39CB4C42.1A59669C@kew.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 01:13 AM 9/23/2000, Wes Peters wrote: >Drew Derbyshire wrote: > > > > > Neil Blakey-Milner wrote: > > > Brett, did it ever occur to you THESE ARE THE DEFAULTS because MOST > > > PEOPLE WANT THEM THAT WAY? > > > > Did you take a survey? > >Yes. The lack of complaints from anybody other than Brett Glass constitutes >our unofficial, non-scientific survey. You forget: I wasn't the one who started this thread. I merely indicated my agreement. > > Most people also want a secure system. Don't even get me started about > > rlogin/rsh being on by default in /etc/inetd.conf. > >Most people wouldn't know a secure system if it bit them in the nose. It's sad how many arguments for NOT improving FreeBSD are based on what I can only call hacker elitism. Of COURSE a super-experienced hacker can deal with a user-hostile install, secure the system manually, etc. given lots of time and knowledge. So? > > IMHO, many people wouldn't know NFS if it bit them in the nose. > >Funny, every place I've worked for the past 15 years has used NFS quite >extensively. Oh, but then, I've been working in UNIX shops for quite >some time. I have worked with UNIX since 1977, and rarely use NFS. At least in part because it stands for "No File Security...." --Brett Glass SOCIAL SECURITY: I say we scrap the current system and replace it with a system wherein you add your name to the bottom of a list, and then you send some money to the person at the top of the list, and then you.... Oh, wait, that IS our current system. -- Dave Barry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message