From owner-freebsd-hackers  Wed Apr 24  5:22:44 2002
Delivered-To: freebsd-hackers@freebsd.org
Received: from HAL9000.wox.org (12-232-222-90.client.attbi.com [12.232.222.90])
	by hub.freebsd.org (Postfix) with ESMTP
	id 4C22C37B421; Wed, 24 Apr 2002 05:22:39 -0700 (PDT)
Received: (from das@localhost)
	by HAL9000.wox.org (8.11.6/8.11.6) id g3OCLnY05353;
	Wed, 24 Apr 2002 05:21:49 -0700 (PDT)
	(envelope-from das)
Date: Wed, 24 Apr 2002 05:21:49 -0700
From: David Schultz <dschultz@uclink.berkeley.edu>
To: Terry Lambert <tlambert2@mindspring.com>
Cc: Jochem Kossen <j.kossen@home.nl>, frank@exit.com,
	"Greg 'groggy' Lehey" <grog@FreeBSD.ORG>, hackers@FreeBSD.ORG
Subject: Re: Security through obscurity? (and /etc/defaults/rc.conf changes)
Message-ID: <20020424052149.A5289@HAL9000.wox.org>
Mail-Followup-To: Terry Lambert <tlambert2@mindspring.com>,
	Jochem Kossen <j.kossen@home.nl>, frank@exit.com,
	Greg 'groggy' Lehey <grog@FreeBSD.ORG>, hackers@FreeBSD.ORG
References: <200204231454.g3NEsxFR019646@realtime.exit.com> <200204231839.44923.j.kossen@home.nl> <3CC5A7DC.FD06DC11@mindspring.com> <20020423222357.D3593@HAL9000.wox.org> <3CC68910.453A3865@mindspring.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <3CC68910.453A3865@mindspring.com>; from tlambert2@mindspring.com on Wed, Apr 24, 2002 at 03:29:36AM -0700
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

Thus spake Terry Lambert <tlambert2@mindspring.com>:
> David Schultz wrote:
> > Aah...we'd better put uucp back in the base system, then.  Never mind
> > that it might have security problems that we don't know about.  :P
> 
> I can guarantee you that having a computer booted has security
> problems that we don't know about, so the logical thing to do,
> from that persepective, is to power everything off.
> 
> 8^p back at ya...

That would, of course, be impractical.  If you want to take everything
to extremes, the other option is to ignore security entirely.

Statistically, it makes sense not to leave potentially insecure fluff
lying around unless removing the fluff would be vastly inconvenient.

The whole business of what is enabled by default is of particular
concern because many FreeBSD users are not Unix gurus.  You learned
Unix before security was a major concern, but many people don't have
that advantage.  The defaults should afford a reasonable degree of
security, and people should be able to turn on other features as they
begin to understand them.  I am not proposing to create a system that
is virtually unusable by default, a la OpenBSD, but it is not
unreasonable to disable by default a feature that most people do not
use.  People who want and understand the feature can turn it on
easily enough.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message