[CentOS] compilers a security risk?

Jim Perrin jperrin at gmail.com
Sun Mar 7 03:37:24 UTC 2010


On Sat, Mar 6, 2010 at 6:02 PM, Dave Stevens <geek at uniserve.com> wrote:

> I don't have enough experience to assess the security issues. Does
> anyone have an opinion on this? It would be simple and feasible to
> allocate another domain as suggested above.

The compilers themselves aren't really a security risk, but IF someone
gets into your system, there's no need to provide them with tools they
can use to do their dastardly deeds. I'm a minimalist when it comes to
my production systems. Not having extraneous packages on the system
means (ostensibly) less patching, less applications with potential
holes which in turn means less surface area to attack, etc.


-- 
During times of universal deceit, telling the truth becomes a revolutionary act.
George Orwell


More information about the CentOS mailing list