Date: Fri, 28 Jul 2000 16:52:13 -0600 From: Warner Losh <imp@village.org> To: Eivind Eklund <eivind@FreeBSD.org> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/etc/defaults rc.conf src/release/sysinstall config.c Message-ID: <200007282252.QAA60523@harmony.village.org> In-Reply-To: Your message of "Fri, 28 Jul 2000 15:45:37 PDT." <200007282245.PAA59993@freefall.freebsd.org> References: <200007282245.PAA59993@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <200007282245.PAA59993@freefall.freebsd.org> Eivind Eklund writes: : Change the defaults for portmap, sendmail and inetd to be not running them. : Make sysinstall override this on install, so the effective behavioural : change for a newly installed system is null. Overall, this makes a system : with an empty /etc/rc.conf not run any network services, and makes the : FreeBSD-provided network services that are running visible in /etc/rc.conf : (instead of making people look through /etc/defaults/rc.conf to find the : things they need to disable to secure the system.) Before people freak out. This has no effect on system security or usability if you use sysinstall. It just makes it easier for people to change things to be secure if they want. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200007282252.QAA60523>