<quote who="Rick Moen"> > > - Default installations. I think you'd find more of these > > vulnerabilities are exploitable in a default install of Windows than a > > default install of say RedHat or Debian. > > I'd say there's really no such thing as a default install in Debian. > One can consider that a bug or a feature, per inclination.
There's the default setup of the packages though - inetd and snmpd are two good examples of non-good defaults in Debian packages. Every distro has this issue, it's a tough one to get right. [ I only think of inetd/snmp because they've come up in the past few days - more often than not the default setups you get with Debian packages are very good (see the apache package). ] Everyone should go lodge bugs on their favourite distros, it makes them kick more arse. :) - Jeff -- "One World, one Web, one Browser." - Microsoft promotion "Ein Volk, ein Reich, ein Fuhrer." - Adolf Hitler -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug