On Mon, 2007-06-18 at 12:56 -0400, Stephen Harris wrote: > The security rule of thumb here is that such machine _will_ be attacked, > and so "security in depth" is the process to apply. There are far more attack vectors than just through network facing daemons. To name just one example, web browsers. Unfortunately, Firefox is not yet protected by the targeted policy. Hopefully that will happen one day. -- Daniel