At 03:34 PM 9/22/99 +0200, you wrote:
24/ in the net - then you _have_ to learn as much as possible about securing your box. But, on the other hand, it would be easier if a standard installation would not enable inetd by default. That would reduce the danger of a break-in.
I agree, wholeheartedly, that people should have to learn everything they can if they're hooking up a box 24x7x365. BUT, on the same token, where it is easily achievable, the OS should come "out of the box" fairly secure (allowing the user to connect his machine to the net without much fear "out of the box", and then install patches/upgrades from the net, and THEN enable features). As it stands right now, you would have to have your patches/upgrades already downloaded on a local machine, because you couldn't "safely" connect the box to the Internet so as to GET the patches/upgrades. D