<quote who="Rick Moen">
> > - Default installations. I think you'd find more of these
> > vulnerabilities are exploitable in a default install of Windows than a
> > default install of say RedHat or Debian.
>
> I'd say there's really no such thing as a default install in Debian.
> One can consider that a bug or a feature, per inclination.
There's the default setup of the packages though - inetd and snmpd are two
good examples of non-good defaults in Debian packages. Every distro has this
issue, it's a tough one to get right.
[ I only think of inetd/snmp because they've come up in the past few days -
more often than not the default setups you get with Debian packages are very
good (see the apache package). ]
Everyone should go lodge bugs on their favourite distros, it makes them kick
more arse. :)
- Jeff
--
"One World, one Web, one Browser." - Microsoft promotion
"Ein Volk, ein Reich, ein Fuhrer." - Adolf Hitler
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://lists.slug.org.au/listinfo/slug
