From owner-freebsd-security Tue Oct 31 17:41: 7 2000 Delivered-To: freebsd-security@freebsd.org Received: from rucus.ru.ac.za (rucus.ru.ac.za [146.231.29.2]) by hub.freebsd.org (Postfix) with SMTP id C7BC137B479 for ; Tue, 31 Oct 2000 17:41:02 -0800 (PST) Received: (qmail 84353 invoked by uid 1003); 1 Nov 2000 01:41:00 -0000 Date: Wed, 1 Nov 2000 03:41:00 +0200 From: Neil Blakey-Milner To: Moritz Hardt Cc: Andreas Alderud , Wes Peters , "security@FreeBSD.ORG" Subject: Re: Installer Message-ID: <20001101034100.A77550@mithrandr.moria.org> References: <39FF69C8.4FAFF2AB@softweyr.com> <200011010104.CAA13030@post.webmailer.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200011010104.CAA13030@post.webmailer.de>; from mhardt@morix.de on Tue, Oct 31, 2000 at 07:04:02PM -0500 X-Operating-System: FreeBSD 4.1-STABLE i386 X-URL: http://mithrandr.moria.org/nbm/ Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue 2000-10-31 (19:04), Moritz Hardt wrote: > Yes it's my serious wish that FreeBSD doesn't follow the trend of most (linux-) > distributors and makes a GUI-Installation-Menu with a minimal installation of 500mb. > I agree, that sendmail shouldn't be installed by default. A minimalistic design > improves the security and makes the system easier to administrate. I don't really want to get into this, but maybe we'll be lucky this time. Where do we find a good mail delivery/transfer agent so that our daily logs don't disappear off the edge? While I personally don't use sendmail, I think it makes sense to have it there to, well, send mail, by default. And it's not so bloated that we really begrudge it the space. The suid-bit, maybe, but not the space. Not having a mail agent is usually the exception, not the rule. Perhaps we can put a note somewhere to remove the suid bit off sendmail if you install something else. We play nicely with other mailers now with mailwrapper, so noone can really complain unless they come up with all the code to make it optional only if another mail agent is installed or a specific override is made. (this would be pretty easy with virtual packages, which you'd have to implement, which each MTA would provide. dummy-mta would also provide it, but it would be lying, and your mail would go to /dev/null. At most 8 hours of coding to put support in bsd.port.mk and pkg_install. I only charge $100/hour *hide*. Of course, since this is all base system stuff, you'd then have to package-ize large bits of the base system. You don't want to be fascist about exact versioning of the base, so you'd have to implement relative versioning. The libh project is going to facilitate all of this, and needs coders and documentors. Details on the projects page on the web site, mailing list listed in the handbook. We need help. Thank you.) Neil -- Neil Blakey-Milner nbm@mithrandr.moria.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message