Date: Wed, 1 Aug 2001 09:27:25 -0600 From: Charles Randall <crandall@matchlogic.com> To: 'Cy Schubert - ITSD Open Systems Group' <Cy.Schubert@uumail.gov.bc.ca>, Robert Watson <rwatson@FreeBSD.ORG> Cc: arch@FreeBSD.ORG, stable@FreeBSD.ORG Subject: RE: Patch to modify default inetd.conf, have sysinstall prompt t o edit , inetd.conf Message-ID: <5FE9B713CCCDD311A03400508B8B30130828F210@bdr-xcln.corp.matchlogic.com>
next in thread | raw e-mail | index | archive | help
FYI, Starting with RedHat 7.1, they now install a firewall and prompt the user for high/medium/low/none security policies. -Charles -----Original Message----- From: Cy Schubert - ITSD Open Systems Group [mailto:Cy.Schubert@uumail.gov.bc.ca] Sent: Wednesday, August 01, 2001 8:02 AM To: Robert Watson Cc: arch@FreeBSD.ORG; stable@FreeBSD.ORG Subject: Re: Patch to modify default inetd.conf, have sysinstall prompt to edit , inetd.conf In message <Pine.NEB.3.96L.1010731233839.54921B-200000@fledge.watson.org >, Robe rt Watson writes: > One of the observations that has been made fairly frequently to me is that > the current default inetd.conf puts many FreeBSD users at risk > unnecessarily, as many of them have moved to using SSH for remote access > needs. In particular in light of the recent ftpd and telnetd security > bugs, it seems like 4.4-RELEASE would be a good time to move to a more > conservative default of having both of these services disabled in the base > install, as both NetBSD and OpenBSD have moved to doing. I think that this is goodness. I have been an advocate of this (actually a less balanced approach -- of which I've seen the light and error of my thinking) for a long time. For that matter one of my biggest pet peeves about RH Linux is that by default it installs everything and enables everything. I think that the approach taken here is a balanced approach and is the correct approach. Services are not removed from the system entirely and can be enabled if needed. Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/Alpha Team Internet: Cy.Schubert@osg.gov.bc.ca Open Systems Group, ITSD Ministry of Management Services Province of BC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5FE9B713CCCDD311A03400508B8B30130828F210>