Date: Mon, 22 Nov 1999 10:13:25 -0700 (MST) From: Paul Hart <hart@iserver.com> To: Eivind Eklund <eivind@FreeBSD.ORG> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Disabling FTP Message-ID: <Pine.BSF.4.10.9911220956530.23492-100000@anchovy.orem.iserver.com> In-Reply-To: <19991122000209.J602@bitbox.follo.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 22 Nov 1999, Eivind Eklund wrote: > This is why I do NOT want to leave them high and dry by having them > have their box rooted because YOU think it is convenient to have an > insecure setup which THEY will never get any benefit from. Why are we equating running ftpd with root compromise? I would recommend turning it off if you have no need for it, but I don't see how having it enabled necessarily means you're going to be rooted. Sure your passwords can be sniffed, but the frank reality is that most end users (and they're running Windows) just don't care or are unable to appreciate the danger. I would vote for leaving ftpd and telnetd turned on in the vanilla install, since I think the vanilla install needs to strike a delicate balance between security and usability. Inexperienced users will have enough running to see how FreeBSD works without undue exposure, and experienced users have only a few things to turn off if they're worried about them. Paul Hart -- Paul Robert Hart ><8> ><8> ><8> Verio Web Hosting, Inc. hart@iserver.com ><8> ><8> ><8> http://www.iserver.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9911220956530.23492-100000>