Date: Fri, 4 May 2012 16:58:25 +0200 (CEST) From: Wojciech Puchar <wojtek@wojtek.tensor.gdynia.pl> To: Giorgos Keramidas <keramida@ceid.upatras.gr> Cc: Richard Yao <ryao@cs.stonybrook.edu>, Jerry McAllister <jerrymc@msu.edu>, freebsd-hackers@freebsd.org, Mehmet Erol Sanliturk <m.e.sanliturk@gmail.com>, Andy@freebsd.org, Young <ayoung@mosaicarchive.com> Subject: Re: Ways to promote FreeBSD? Message-ID: <alpine.BSF.2.00.1205041655520.6437@wojtek.tensor.gdynia.pl> In-Reply-To: <CAKR2__1rgORJ6FKDDYEb=uYG==RA=puOyzssaR-JjS3evLbg3Q@mail.gmail.com> References: <CAHMRaQf=M0ULOH=KnqzOXvczSM0Lb6apCoQkJegqyU3e8%2BgShA@mail.gmail.com> <alpine.BSF.2.00.1204272025080.5846@wojtek.tensor.gdynia.pl> <20120427203117.GA2055@gizmo.acns.msu.edu> <CAOgwaMv_9c_W4fek-kGhQV3B5bKv4RnEFn_6ixn2LS7qDPma6Q@mail.gmail.com> <CAKR2__3C2r1LTk3Sf0w52Jjp3KZhPduqrN0vsvr1VCCb%2BtF4UQ@mail.gmail.com> <4FA12980.6080101@cs.stonybrook.edu> <CAKR2__1rgORJ6FKDDYEb=uYG==RA=puOyzssaR-JjS3evLbg3Q@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> Not really, no. I was referring to the practice of starting a gazillion > services by default, including dbus, avahi, ftp and http services, > file sharing components, and all the rest of the stuff that is now > commonly installed as part of a "Linux desktop". SELinux is indeed > one form of hardening, but I wasn't referring specifically to it; exactly > the opposite, in fact. Without running unneeded things there is no need to "harden". In spite of FreeBSD having quite a lot of extra security features, i don't really use more than standard unix security and jails, it is not really needed. FreeBSD do this (almost) right - default rc.conf doesn't ruch much, but still too much. no idea why inetd is run by default, with no services but anyway.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.BSF.2.00.1205041655520.6437>