[615] in linux-security and linux-alert archive
Re: [linux-security] SlackWare 3.0 insecurity
daemon@ATHENA.MIT.EDU (Doctor Who)
Fri Feb 23 18:46:27 1996
Date: Fri, 23 Feb 1996 17:18:07 -0500 (EST)
From: Doctor Who <drwho@sinister.com>
To: linux-security@tarsier.cv.nrao.edu
cc: juphoff@tarsier.cv.nrao.edu
[mod: Anyone wishing to pursue this discussion any further please take
it to private email. I'm approving this to the list mainly because
of the offer to distribution maintainers at the end of the message.
Quoting trimmed. --okir]
On Fri, 23 Feb 1996, Jeff Uphoff wrote:
> (The way I view it, the fstab provided with distributions should be
> considered as nothing more than a basic starting point for a
> system--though I'm sure that others will debate that statement.)
Yes...I do debate it. There is absolutely no reason for a distribution to
be shipped that way. It sounds like you are saying that its the
sys-admin's own damned fault for not knowing enough about linux
security. This is a bad approach. Many people will be learning
linux/unix with these distributions, and shouldn't get burned
just because they haven't read far enough into the book yet. Distribution
maintainers should provide at least a modicum of security in their product.
There are a number of people who are willing to do security checks on a
distribution before it is released. Any distribution maintainer who would
like a security audit may contact me and I will put you in touch with said
people.
-----------=?> Doctor Who
