From owner-freebsd-security Tue Nov 23 7:55:28 1999 Delivered-To: freebsd-security@freebsd.org Received: from lambic.physics.montana.edu (lambic.physics.montana.edu [153.90.192.128]) by hub.freebsd.org (Postfix) with ESMTP id 079BA14BD7 for ; Tue, 23 Nov 1999 07:55:15 -0800 (PST) (envelope-from handy@lambic.physics.montana.edu) Received: from localhost (handy@localhost) by lambic.physics.montana.edu (8.9.3/8.9.3) with ESMTP id IAA11309; Tue, 23 Nov 1999 08:53:06 -0700 (MST) (envelope-from handy@lambic.physics.montana.edu) Date: Tue, 23 Nov 1999 08:53:06 -0700 (MST) From: Brian Handy To: Wes Peters Cc: James Gill , security@FreeBSD.ORG Subject: Re: Disabling FTP In-Reply-To: <383AB4B8.1FB571F6@softweyr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >> tell that to -advocacy. > >If they can't install it, they won't ever stay with it. The solution to >this is to create install profiles, including a "clueless newbie" install >that turns on everything but warns them this can be dangerous. A little >doco that explains WHY it's dangerous wouldn't hurt. Seems to me the solution is even simpler than that -- there's a question in the [emphasis] "NOVICE" [/emphasis] install that asks if you want to turn on anonymous ftp. Why not just extend that a bit to ask if you want ftpd turned on at all, and put the appropriate hook in rc.conf like we do with so many other things? Brian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message