ubuntu post installation hardening
Florian Diesch
diesch at spamfence.net
Wed May 20 11:53:24 UTC 2009
Derek Broughton <derek at pointerstop.ca> wrote:
> Thorny wrote:
>
>> On Mon, 18 May 2009 18:46:29 +0100, loner posted:
>>
>>>[Brian McKee]> Ubuntu out of the box is 'good enough' for many (most?)
>>>people.
>>>
>>> Firewall?
>>>
>>
>> If all ports are closed by default?
>
> That is, of course, "good enough for most people", but I have to admit I
> find it a bit scary - it's way too easy for a user to open up ports without
> knowing the potential consequences (say, sudo aptitude install telnetd).
But if I'm installing telnetd I wouldn't expect I have to open the port
at the firewall before I can use it.
IMHO the better solution would be to inform them about the potential
consequences when installing remote accessible software.
Florian
--
<http://www.florian-diesch.de/>
More information about the ubuntu-users
mailing list