* [gentoo-hardened] More thoughts..
@ 2003-03-20 11:07 dscott
0 siblings, 0 replies; only message in thread
From: dscott @ 2003-03-20 11:07 UTC (permalink / raw
To: 'gentoo-hardened@gentoo.org'
[-- Attachment #1.1: Type: text/plain, Size: 675 bytes --]
Before this continues much further:
(http://www-dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html
RFC-1652, RFC-2821, RFC-1894)
I simply wanted to make the point that user-based file exclusion
(systrace/selinux policies) should not be the only concern for a hardened
distro.
The application layer is equally important, both from a stability and security
perpective (in some cases DDOS vulnerabilities would be equally as devastating
as ending up an IRC Zombie).
Encouraging users to use applications that have a solid history of 0 or better
exploits/buffer attacks is a "good thing".
D.
[-- Attachment #1.2: PGP Digital Signature --]
[-- Type: application/pgp-signature, Size: 831 bytes --]
[-- Attachment #2: PGP Public Key --]
[-- Type: application/pgp-keys, Size: 1642 bytes --]
[-- Attachment #3: Type: text/plain, Size: 42 bytes --]
--
gentoo-hardened@gentoo.org mailing list
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2003-03-20 11:06 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-03-20 11:07 [gentoo-hardened] More thoughts dscott
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox