On Saturday 20 December 2003 07:16 pm, Kaj Haulrich wrote: > Here's where msec comes in : I always wonder why the Mandrake > default is "standard". First thing to do after a new > install/upgrade is to set security level to "high". But that > is only a matter of keeping the users privacy, not the > system's.
I believe 'standard' is the right choice, but you are given the opportunity during the install to set it to whatever you want. IMO, it's a good idea to leave it at standard till you have used the system for a while before raising it. Even for a multi user or server system. I also think it's a good choice for users that don't bother to further explore Linux permissions and security in general. They should leave it at standard. It's especially suited to a single user desktop. Permissions do little to protect from the outside world anyhow, for that you need iptables and firewall rules. I think some users, specially the new ones confuse the two, msec/permissions vs. firewall/ports security. Another reason Mandrake's default is standard, is to tryin reduce the "How come I can't _______________" support questions. If I were to criticse Mandrake, it would be for not installing iptables by default when a lan and/or Net connection is configured during the install. I think a very simple firewall rule generator like Guarddog would be a good default choice too. Point'n click fairly intuitive setup for iptables, even for those very new to Linux and security. -- Tom Brinkman Corpus Christi, Texas
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com