Date: Tue, 14 Aug 2001 21:36:05 -0600 From: Warner Losh <imp@harmony.village.org> To: Greg Lehey <grog@FreeBSD.org> Cc: Alexander Langer <alex@big.endian.de>, Robert Watson <rwatson@FreeBSD.org>, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/etc inetd.conf Message-ID: <200108150336.f7F3a5W20082@harmony.village.org> In-Reply-To: Your message of "Wed, 15 Aug 2001 10:54:26 %2B0930." <20010815105426.F61413@wantadilla.lemis.com> References: <20010815105426.F61413@wantadilla.lemis.com> <200108020219.f722Jun16596@freefall.freebsd.org> <20010814213312.C22531@zerogravity.kawo2.rwth-aachen.d>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <20010815105426.F61413@wantadilla.lemis.com> Greg Lehey writes: : On Tuesday, 14 August 2001 at 21:33:12 +0200, Alexander Langer wrote: : > Thus spake Robert Watson (rwatson@FreeBSD.org): : > : >> Default to disabling all inetd.conf entries, in particular, telnetd : >> and ftpd. This more conservative default reduces the exposure of : > : > Let's disable all other services as well and start advertising : > FreeBSD with "No remote exploit in the default install since xx months/ : > years", too, as the OpenBSD folks do. : : I think that sounds funny enough in OpenBSD. We don't want to be : accused of stealing their slogans too. Also, there's a catch. The OpenBSD stuff does have holes in old releases, so the above really should say "in the latest release at the time." OpenBSD 2.8's telnetd has a root hole, for example. Wanrer To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200108150336.f7F3a5W20082>