Date: Sat, 30 Sep 2000 16:00:13 -0700 From: Michael Bryan <fbsd-security@ursine.com> To: security@FreeBSD.ORG Subject: Re: cvs commit: ports/mail/pine4 Makefile (fwd) Message-ID: <39D6707D.CEAB26E2@ursine.com> References: <200009301404.e8UE4xU64460@cwsys.cwsent.com> <Pine.LNX.4.10.10009302338320.29650-100000@jamus.xpert.com> <20000930152917.E25121@149.211.6.64.reflexcom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
"Crist J . Clark" wrote: > > On Sat, Sep 30, 2000 at 11:43:20PM +0200, Roman Shterenzon wrote: > > Still, I think the default should be "insecure" install, since most > > machines are firewalled. > > [...] > > I guess I am one of the few that thinks we should default off for the > good of the newbie user, rather than save the newbie 5 minutes of RTFM > to turn on telnet and ftp. Just everyone hope no exploit like the > recent SGI telnetd bug is ever found hiding in FreeBSD's telnetd. I agree, mainly for the reasons you state --- the newbies that are most likely to install with defaults and no tweaking are often those who are running in environments where they need the most protection. The default install should be all services off, with an easy means to enable them explicitly during and after an install. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?39D6707D.CEAB26E2>