Date: Sat, 16 Oct 1999 16:14:45 -0500 (CDT) From: Frank Tobin <ftobin@uiuc.edu> To: FreeBSD-security Mailing List <freebsd-security@FreeBSD.ORG> Subject: Re: FreeSSH Message-ID: <Pine.BSF.4.10.9910161321100.13544-100000@isr4033.urh.uiuc.edu> In-Reply-To: <199910161549.IAA67111@cwsys.cwsent.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cy Schubert - ITSD Open Systems Group, at 08:48 on Sat, 16 Oct 1999, wrote: > I think that everybody has their favorite package they wish to remove. > In our shop, including the team I manage, everyone uses RedHat desktops, > except for me of course. Most people I work with don't use the C > compiler so they don't install it from the RedHat distribution. The > point is that there are probably a bunch of FreeBSD users who don't use > the C compiler either and from their point of view, as ludicrous as it > sounds, it too should be removed. I agree that the size of the distribution is pretty much not a problem; rather, that there are so many setuid/setgid binaries that get installed when 'everything' is installed. The process of going through the system and weeding out the ones one doesn't need is generally a cumbersome, needless task; the current process is similar to the idea that 'everything is allowed except that which is denied'. It's often better to follow the minimalist policy, 'everything is denied except that which is allowed', which, in this context, means installing as little as possible, and then adding on to that. - -- Frank Tobin "To learn what is good and what is to be valued, those truths which cannot be shaken or changed." Myst: The Book of Atrus http://www.neverending.org/~ftobin/ OpenPGP: 4F86 3BBB A816 6F0A 340F 6003 56FF D10A 260C 4FA3 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.0 (FreeBSD) Comment: PGPEnvelope - http://www.bigfoot.com/~ftobin/resources.html iD8DBQE4COrUVv/RCiYMT6MRAmOjAJ9EG/74ksqGntcmimSocTJqfU4OQgCdHDBZ ogrFjqcDKaudEYxHTzhMvPw= =HZVs -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9910161321100.13544-100000>