RE: [SLUG] Daemons, RH, from Security Portal
Agreed, if you aren't actually using something it's not meaningful to switch it on. But isn't kudzu required (mandatory) for Plug 'n Pray or hot-pluggable (USB) devices? - Jill. ___ Jill Rowling Snr Design Engineer & Unix System Administrator Electronic Engineering Department, Aristocrat Technologies Australia 3rd Floor, 77 Dunning Ave Rosebery NSW 2018 Phone: (02) 9697-4484 Fax:(02) 9663-1412 Email: [EMAIL PROTECTED] -Original Message- From: Umar Goldeli [mailto:[EMAIL PROTECTED]] Sent: Tuesday, 26 September 2000 10:28 To: Arthur Barton Cc: [EMAIL PROTECTED] Subject: Re: [SLUG] Daemons, RH, from Security Portal > > I'd have thought it would be better to keep the daemon and just ensure > that > > it works properly... > > Very true. As long as it functions properly, there isn't much of a problem > with it running, it is simply a personal preference i have to disable > things. Actually - your "personal preference" will dramatically increase your system's security. :) Any daemon that isn't started is one less that could have been otherwise exploited. In short - if you don't *desperately* need it, trash it. -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
Re: [SLUG] Daemons, RH, from Security Portal
> > I'd have thought it would be better to keep the daemon and just ensure > that > > it works properly... > > Very true. As long as it functions properly, there isn't much of a problem > with it running, it is simply a personal preference i have to disable > things. Actually - your "personal preference" will dramatically increase your system's security. :) Any daemon that isn't started is one less that could have been otherwise exploited. In short - if you don't *desperately* need it, trash it. //Mr. Paranoid -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
Re: [SLUG] Daemons, RH, from Security Portal
> Interestingly the author recommends deactivating kudzu after booting, then > reactivating it just before shutdown. Personally i think everything that isn't needed should be deactivated. If you add hardware, start kudzu, if not, you never need it to run. The same goes with every other service / daemon, if its not needed, i dont start it, especially at boot. Everything can be stated manualy later if it becomes necessary. > This is almost an example of where it could be done automatically in an > appropriate run level setting, although sticking it as an Snn in rc0.d would > almost guarantee that it never gets run (Knn get run first I believe)! Wouldn't it be easier to de-activate it, so that it doesn't start? :-) > I'd have thought it would be better to keep the daemon and just ensure that > it works properly... Very true. As long as it functions properly, there isn't much of a problem with it running, it is simply a personal preference i have to disable things. Also, sorry for the somewhat cranky tone; its been a very long morning -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
RE: [SLUG] Daemons, RH, from Security Portal
Interestingly the author recommends deactivating kudzu after booting, then reactivating it just before shutdown. This is almost an example of where it could be done automatically in an appropriate run level setting, although sticking it as an Snn in rc0.d would almost guarantee that it never gets run (Knn get run first I believe)! One might have to have two run levels, sounds messy. I'd have thought it would be better to keep the daemon and just ensure that it works properly... What do others think? - Jill. ___ Jill Rowling Snr Design Engineer & Unix System Administrator Electronic Engineering Department, Aristocrat Technologies Australia 3rd Floor, 77 Dunning Ave Rosebery NSW 2018 Phone: (02) 9697-4484 Fax:(02) 9663-1412 Email: [EMAIL PROTECTED] -Original Message- From: Terry Collins [mailto:[EMAIL PROTECTED]] This article attempts to clear up the confusion, by describing the purpose of each of the running daemons on a Red Hat 6.1/6.x "Server" box and often giving suggestions for deactivation. Read the full story here: http://securityportal.com/cover/coverstory2925.html -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
[SLUG] Daemons, RH, from Security Portal
This may be of interest/use to some newer linux users.
It talks about all the daemons your new system runs and their role.
*** What's New With SecurityPortal ***
Killing Daemons!
If you install most Linux distributions, including Red Hat 6.x in the
"Server" configuration, you'll find a number of optional system
"daemons"
running. Given the normal path of discovery of security vulnerabilities
,
one or more of these (totally optional) programs might have a bug that
attackers can exploit to get root access. The problem is this: most
system
administrators don't know what all those programs on their systems do !
This
article attempts to clear up the confusion, by describing the purpose of
each of the running daemons on a Red Hat 6.1/6.x "Server" box and often
giving suggestions for deactivation. While this article is a "must-read"
for
every Red Hat/Mandrake system administrator, executives should find this
article useful as well, to get a general understanding and to help set a
security policy.
Read the full story here:
http://securityportal.com/cover/coverstory2925.html
--
Terry Collins {:-)}}} Ph(02) 4627 2186 Fax(02) 4628 7861
email: [EMAIL PROTECTED] www: http://www.woa.com.au
or [EMAIL PROTECTED]
WOA Computer Services
snail: PO Box 1047, Campbelltown, NSW 2560.
"People without trees are like fish without clean water"
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
