27 Jan
2005
27 Jan
'05
11:04 p.m.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Greg Knaddison wrote: | On that subject, it's worth considering that many installations are | not terribly "secure" right out of the box. For example, SSH allows | protocol version 1 and remote root logins by default on Centos. Many | admins consider this to be rather insecure - some have no problem with | it in their environments.
This is merely a duplication of the configuration of RHEL out of the box. IMHO, security due diligence is not a function of the distro provider.
| Whatever services you do need, it would be worth auditing all of their | config files.
Their or the config files?
.dn
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFB+WV6CRFXD+VcGBkRAodBAJ4qFG4aZhdRBRzWawLQRKZ+xINK/gCfYIhA
tXnJ+XfDPdam5AUEPC7+dTs=
=wVed
-----END PGP SIGNATURE-----