Re: [CentOS] compilers a security risk?

On Sat, Mar 6, 2010 at 6:02 PM, Dave Stevens geek@uniserve.com wrote:

I don't have enough experience to assess the security issues. Does anyone have an opinion on this? It would be simple and feasible to allocate another domain as suggested above.

The compilers themselves aren't really a security risk, but IF someone gets into your system, there's no need to provide them with tools they can use to do their dastardly deeds. I'm a minimalist when it comes to my production systems. Not having extraneous packages on the system means (ostensibly) less patching, less applications with potential holes which in turn means less surface area to attack, etc.