| 1 |
Before this continues much further: |
| 2 |
|
| 3 |
|
| 4 |
(http://www-dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html |
| 5 |
|
| 6 |
|
| 7 |
RFC-1652, RFC-2821, RFC-1894) |
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
I simply wanted to make the point that user-based file exclusion |
| 15 |
|
| 16 |
|
| 17 |
(systrace/selinux policies) should not be the only concern for a hardened |
| 18 |
|
| 19 |
|
| 20 |
distro. |
| 21 |
|
| 22 |
|
| 23 |
The application layer is equally important, both from a stability and security |
| 24 |
|
| 25 |
|
| 26 |
perpective (in some cases DDOS vulnerabilities would be equally as devastating |
| 27 |
|
| 28 |
|
| 29 |
as ending up an IRC Zombie). |
| 30 |
|
| 31 |
|
| 32 |
Encouraging users to use applications that have a solid history of 0 or better |
| 33 |
|
| 34 |
|
| 35 |
exploits/buffer attacks is a "good thing". |
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
D. |
Archives