Michael Shigorin
mike at osdn.org.ua
Sun Nov 13 15:23:13 CST 2005
On Fri, Nov 11, 2005 at 09:35:41PM +0100, Christian Jensen wrote:
> http://gnuman.com/distros/ubuntu_server_-_possibly_the_best_server_distro_in_the_world_..._ever_.html
> "In short, ubuntu server is a base system; no unneccessary services or
> applications automatically installed and run, so no system resources
> being wasted; with no default services enabled it is very secure - no
> unneccessary security risks, and no bloat to chew up your disk space"
Hm, does Ubuntu use chrooted/privsep'ed services? We have even
libresolv running in empty r/o chroot, unprivileged (it's the
same story in ALT and Owl, as are many other aspects).
Does it have glibc patches ported from OpenBSD (sanitization
and friends)? These have actually helped before, some exploits
that would "work like charm" on Slackware would break on ALT.
It's no use running in circles with something being "very secure"
while being almost turned off and buried underground -- Microsoft
was widely known for that with their NT4 CC certification.
Things that happen when you actually *do* start the services
needed, do matter.
--
---- WBR, Michael Shigorin <mike at altlinux.ru>
------ Linux.Kiev http://www.linux.kiev.ua/
More information about the sounder
mailing list