Re: Secure distribution

• Previous message: Justin Shaffer: "Re: Secure distribution"
• In reply to: David Fletcher: "Secure distribution"
• Next in thread: David Fletcher: "Re: Secure distribution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 12 Sep 2003 12:53:29 -0700

[followup-to set]
In article <20030912135307.736cd296.D.I.Fletcher@Sheffield.ac.uk>,
  David Fletcher wrote:
... long lines. Please set word wrap in your editor.

> I use Mandrake as a desktop system, but wonder if other distributions
> such as Trustix (www.trustix.net) or Openna (www.openna.com) offer
> better security for running a server.

I wouldn't think of Mandrake as a best choice for a server, but any
distro can be secured if you know what you're doing. Conversely any
distro can be insecure if you don't. :)

> How well maintained do these smaller distributions tend to be?

I'd look first at their frequency of updates. Then I'd look at their
security choices in compiling their packages. If I found
    ./configure --with-kitchen-sink --enable-dangerous --disable-safe
I think I'd worry. :)

> Is the increase in security worth the move away from a distribution I
> am familiar with?

I would say probably not. There, however, it depends on the security
choices made by the maintainers of your familiar distro. Pay special
attention to the options used in compiling any services which you will
have open to the Internet (or to any unknown, untrusted users, for that
matter.)

-- 
  /dev/rob0 - preferred_email=i$((28*28+28))@softhome.net
  or put "not-spam" or "/dev/rob0" in Subject header to reply

• Previous message: Justin Shaffer: "Re: Secure distribution"
• In reply to: David Fletcher: "Secure distribution"
• Next in thread: David Fletcher: "Re: Secure distribution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]