Ubuntu Desktop Security Defaults

Mackenzie Morgan macoafi at gmail.com
Mon Mar 16 15:17:52 UTC 2009


On Monday 16 March 2009 2:13:34 am Null Ack wrote:
> Gday folks :)
> 
> There is difference between what I foresee as sensible security
> defaults for our desktop build against what is being currently
> delivered. It may very well be that there is aspects to the current
> setup that I am not fully aware of, and I'd like to better understand
> the reasoning behind the current situation if so. Otherwise, perhaps I
> could please suggest some possible enhancements:
> 
> * Enabling UFW by default or some other firewall by default
> * Having AppArmor actually protecting the desktop build rather than
> what seems as currently a false illusion of coverage with just CUPS
> being protected

NoScript addon installed by default would probably fall into the "security 
that's too disruptive" category, I'm guessing?

Oh, and um...ufw enabled *for IPv6* as well.

-- 
Mackenzie Morgan
http://ubuntulinuxtipstricks.blogspot.com
apt-get moo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.ubuntu.com/archives/ubuntu-devel-discuss/attachments/20090316/54fb97ad/attachment.pgp>


More information about the Ubuntu-devel-discuss mailing list