[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: From release notes for FC5T3 (web)

On Tue, 2006-03-07 at 09:40, Rahul Sundaram wrote:
> >
> Just having a  program with a security hole on disk through a 
> "everything" installation that you dont use is a potential problem that 
> leaves room for an exploit.

Which means that it will be found and fixed, which is pretty
much the point of delivering it in fedora in the first place.

> Basically dont install stuff that you wont 
> use and audit everything that you install and use carefully. SELinux 
> does go a long way towards preventing many of these issues but the 
> default targeted policy in Fedora doesnt restrict all the programs 
> unlike the alternative strict policy which might require a good amount 
> of customization for regular use.

The solution to security problems is to find and fix them and
make the developers aware of why they were problems so they
don't repeat them.  Anything less is just sweeping the dirt
under the rug.

  Les Mikesell
   lesmikesell gmail com

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]