Re: Is oldstable security support duration something to be proud of?

Maybe I'm wrong, I don't hold the truth. But I see Debian under a totally different perspective than other distros. More of a philosophical stand (reminiscent of Richard Stallman ideas about free software). This, of course, is a work in progress with up and down days/seasons --whatever. That

Re: Why not have firewall rules by default?

Please check out section 3.6 of the Securing Debian Manual. IIRC: - a default install (i.e. one in which you just press Enter all the way and select no tasks) will get you OpenSSH, Exim and portmap, with Exim bound to the loopback interface. portmap is typically not bound to the

Re: secure installation

Of course is a little bit of philosophy. The whole Debian project is based on a philosophy of freedom vs rampant marketing and corporate only dominated computing experience. Granted that many take advantage of this and make money they would not make if using other for profit OS's. The original

Re: Why is portmap installed by default?

You can also edit /etc/default/portmap to bind portmap to listen to localhost only (127.0.0.1). -- -JM. “Estos días azules y este sol de la infancia “(Antonio Machado-1939) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: INFECTED (PORTS: 600)

Do you get any unusual report with rkhunter? chkrootkit has given me many false positives...I can remember false +'s when portsentry or tiger were running. On Thu, May 18, 2006 6:17 am, Morgan Walker said: Hey guys, Just new to this mailing list, hope you guys can help me out. I was

Re: Strange Apache log and mambo security - sexy executable

Just a couple of things: Apache configured with mod_rewrite to deny blank or fake referers is a good idea. Do you have apache configured with mod_security? I highly recommend this last one since you run an php based CMS and can protect from exploits not yet discovered. On Mon, January 23,

Re: Strange Apache log and mambo security - sexy executable

Life is only probabilities...isn't it? A quick link for an overview: http://en.wikipedia.org/wiki/Referer_spam There are blacklists elsewhere, some updated every 15 minutes. On Mon, January 23, 2006 8:58 am, Christoph Ulrich Scholler said: Hi, On 23.01. 07:46, Jose Marrero wrote: Apache

Re: [SECURITY] [DSA 879-1] New gallery packages fix privilege escalation

Why every gallery update breaks the customizations one has done to it? I am referring to skins, headers, etc. On Wed, November 2, 2005 6:01 am, Norbert Tretkowski said: * Martin Schulze wrote: A bug in gallery has been discoverd that grants all registrated postnuke users full access to the