On Tue, Feb 04, Michael Ströder wrote:
On 2/4/20 10:19 PM, Thorsten Kukuk wrote:
On Tue, Feb 04, Jan Engelhardt wrote:
I don't know if this gets displayed at all when using some update from a graphical environment (and then, if it sticks to the screen).
It does not get displayed, that's why there are so many systems out there with broken or insecure configurations.
You're implying that upstream config from .rpmnew files is always more secure.
Neither upstream nor customer modified config is always more secure, but we had enough cases last year, where, if you didn't integrated the upstream changes, your system was insecure. Like the key handling of the kernel per user and systemd/PAM enabling this.
IMHO the opposite is true if one tweaks the local config e.g. to add security options or to turn off unused features etc.
There are enough real world openSUSE examples from last year to prove you wrong. Thorsten -- Thorsten Kukuk, Distinguished Engineer, Senior Architect SLES & MicroOS SUSE Software Solutions Germany GmbH, Maxfeldstr. 5, 90409 Nuernberg, Germany Managing Director: Felix Imendoerffer (HRB 36809, AG Nürnberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org