1 |
Before this continues much further: |
2 |
|
3 |
|
4 |
(http://www-dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html |
5 |
|
6 |
|
7 |
RFC-1652, RFC-2821, RFC-1894) |
8 |
|
9 |
|
10 |
|
11 |
|
12 |
|
13 |
|
14 |
I simply wanted to make the point that user-based file exclusion |
15 |
|
16 |
|
17 |
(systrace/selinux policies) should not be the only concern for a hardened |
18 |
|
19 |
|
20 |
distro. |
21 |
|
22 |
|
23 |
The application layer is equally important, both from a stability and security |
24 |
|
25 |
|
26 |
perpective (in some cases DDOS vulnerabilities would be equally as devastating |
27 |
|
28 |
|
29 |
as ending up an IRC Zombie). |
30 |
|
31 |
|
32 |
Encouraging users to use applications that have a solid history of 0 or better |
33 |
|
34 |
|
35 |
exploits/buffer attacks is a "good thing". |
36 |
|
37 |
|
38 |
|
39 |
|
40 |
|
41 |
|
42 |
D. |