Re: How (un)safe would Debian be when only using the security.debian.org repository?
* adrelanos (adrela...@riseup.net) [10.11.13 20:51]: Hi! How (un)safe would it be...? When using Debian while... Not using: deb http://ftp.us.debian.org/debian stable main contrib non-free deb http://security.debian.org stable/updates main contrib non-free Only using: deb http://security.debian.org stable/updates main contrib non-free the other problem is, that you will not be able to install any software which has never received any security fix: e.g. neither vim nor nano are in the pool dir on that mirror. Sebastian -- Religion ist das Opium des Volkes. | _ ASCII ribbon campaign Karl Marx | ( ) against HTML e-mail SEB@STI@N GÜNTHER | X against M$ attachments mailto:deb...@teageek.de | / \ www.asciiribbon.org -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20131110235942.ga2...@marvin.heimnetz.teageek.de
Re: libsasl2: is there an announce list for Main
* john (lists.j...@gmail.com) [08.06.09 17:37]: Hi all, Is there an announce list for the updates to the Main repository or are packages just added there and end-users find out when they do apt-get update? For example I see that there's an update to libsasl2 and libsasl2-2. I can't find any information about the nature of the update. Perhaps if I knew how to ask apt it would tell me? Anyway I hate to apply patches that I don't have an idea about. So hopefully someone can enlighten me. debian-security-announce.lists.debian.org Thanks! John HTH Sebastian -- Religion ist das Opium des Volkes. | _ ASCII ribbon campaign Karl Marx | ( ) against HTML e-mail s...@sti@N GÜNTHER | X against M$ attachments mailto:sam...@guenther-roetgen.de | / \ www.asciiribbon.org pgp35xOCjDhJy.pgp Description: PGP signature
Re: Secure Remote Application and OS Deployment?
* Chip Panarchy (forumanar...@gmail.com) [16.03.09 06:46]: Hello Been doing a lot of research of late into the installation of Windows over a network (using the Unattended BootCD and a Network Share). Also a little into RIS (WDS). I am interested in how this could be done securely. To summarise what I would like to know, I have summarised it into the 2 questions below; Why do have the impression that this is a homework...? 1. Is there a Secure way to Remotely install: Windows XP, Windows Vista, Windows Server 2003, Windows Server 2008, Linux (GNU way, so I can install the feature on any *nix) Mac OS X, if so, how? yes, for some Linux for sure. 2. Is there a Secure way to Remotely install applications (from a central repository) to the aforementioned Operating Systems, if so, how? yes, for those who have a sane package manager. NOTE: If it isn't possible for some of the OSs, please tell me which, then please continue to answer how it will be possible for the others. Thanks in advance, Chip D. Panarchy Sebastian -- Religion ist das Opium des Volkes. Karl Marx s...@sti@N GÜNTHER mailto:sam...@guenther-roetgen.de pgpc418ljDzZ5.pgp Description: PGP signature
Re: Securing a Network - What's the most secure Network/Server OS? - Is there a secure way to use Shares?
* Chip Panarchy (forumanar...@gmail.com) [01.03.09 15:30]: Hello So far, when I have posted on this Mailing-List I have recieved some very informative replies. I am currently studying for a few certifications, (amongst them MCSE, Security+ the CCNA), and would like to learn how to design a secure network. Please help me with this endeavor. [ Hypothetical situation; ] Now onto my question. For a convoluted network as pictured above, (hypothetical, of course), what kind of Server (NOS included?) operating system should I install, and how should I configure it? I want to know this only by a security standpoint. Things that are important; # SECURITY # - Encryption of all traffic (256-bit) - Shares (if possible to have Shares and still maintain a secure network) - Centralised secure storage of Data (Storage) - Centralised secure storage of User accounts - Unattended installation of (at the very least) the 500 Windows boxes - Internet Please tell me what I would need in this situation, not interested in how many people would be needed, how much money it would cost, or how much time it would take. Well you need information about what should be secured and against what threat it should be secured. Any of your information does not explain what you are trying to achieve. Security is not a sole purpose, it is a pool of measures against one or more threads. There is no such thing as 100% security... Now time to summarise my questions in an easy to review format; 1. Which Server Operating system should I install on my Server? 2. To make the Network fast (e.g. Gigabit NICs on all computers more Servers etc.), as well as secure, what would I need to do? 3. What is the best way to have 256-bit encryption of all traffic on this network? 4. Is it possible to have Shared folders, yet still attain a high-level of security on this Network? 5. Would it be possible to have Centralised Storage/Resources? 6. Could it be possible to have a Centralised User Account database, for this entire network? 7. Would you think it a good idea to use a Debian server for Repositories? Please try your best to answer those 6 questions. I count 7... But I won't answer to any of these, because there are missing some fundamental constraints in this scenario to make any useful suggestions. Sebastian -- Religion ist das Opium des Volkes. Karl Marx s...@sti@N GÜNTHER mailto:sam...@guenther-roetgen.de pgpR4fEOMNVXQ.pgp Description: PGP signature