From owner-freebsd-security  Thu Feb 15  2:19:55 2001
Delivered-To: freebsd-security@freebsd.org
Received: from gwdu42.gwdg.de (gwdu42.gwdg.de [134.76.10.26])
	by hub.freebsd.org (Postfix) with ESMTP id F187237B491
	for <freebsd-security@freebsd.org>; Thu, 15 Feb 2001 02:19:50 -0800 (PST)
Received: from partner.uni-psych.gwdg.de ([134.76.136.114])
	by gwdu42.gwdg.de with esmtp (Exim 3.14 #18)
	id 14TLVs-00041a-00
	for freebsd-security@freebsd.org; Thu, 15 Feb 2001 11:19:49 +0100
Mime-Version: 1.0
X-Sender: rbeer@popper.gwdg.de
Message-Id: <p04330100b6b15975379c@[192.168.0.98]>
Date: Thu, 15 Feb 2001 11:19:44 +0100
To: freebsd-security@freebsd.org
From: Ragnar Beer <rbeer@uni-goettingen.de>
Subject: More security settings documentation
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Howdy again! Another thought: Wouldn't it be nice to extend the idea of
the choice of security levels? E.g. I think I'd like to be asked whether
I want log-file-rotation disabled and the sappnd flag set for logfiles.

Why don't we collect a list of what could/should be done to protect 4.2
then collect information about the why's and howto's which would also be
quite a good educational thing and maybe finally turn it into a
shell-script that asks a couple of questions and then does a couple of
actions based on the answers? Or maybe extend the install script. Or is
there already something like that?

Ragnar


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message