[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: RH Taroon Beta Open Ports

From: Felipe Alfaro Solana <felipe_alfaro linuxmail org>
To: rhl-devel-list <rhl-devel-list redhat com>
Subject: Re: RH Taroon Beta Open Ports
Date: Mon, 25 Aug 2003 21:42:19 +0200

On Mon, 2003-08-25 at 20:41, David T Hollis wrote:

> Wrong.  Security in-depth is the answer.
> 
> Good - IP ports are firewalled
> Better - application is not running
> Best - application is not even installed

I agree 500% ...
If we can:

1. We shouldn't even install portmap or nfs-utils
2. If we can't do 1, then disable portmap and nfs*
3. If we can't achieve neither 1 nor 2, make them bind to localhost
4. Else, enable firewall by default and get picky if the user tries to
disable it.

References:
- RH Taroon Beta Open Ports
  - From: rhldevel
- Re: RH Taroon Beta Open Ports
  - From: Felipe Alfaro Solana
- Re: RH Taroon Beta Open Ports
  - From: Steve Dickson
- Re: RH Taroon Beta Open Ports
  - From: rhldevel
- Re: RH Taroon Beta Open Ports
  - From: Bill Nottingham
- Re: RH Taroon Beta Open Ports
  - From: rhldevel
- Re: RH Taroon Beta Open Ports
  - From: Steve Dickson
- Re: RH Taroon Beta Open Ports
  - From: David T Hollis

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]