Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date: Mon, 21 Oct 2002 00:34:53 -0000 (UTC)
From: <soso@...ymonkey.org>
To: <owl-users@...ts.openwall.com>
Subject: a couple of friendly Owl security questions / comments

Hi All--

I am blown away by the high level of security in the standard Openwall 1.0
install - Amazing job to all concerned!  I have a couple of comments and
questions, though.  First, I had to `echo 1 >
/proc/sys/net/ipv4/icmp_echo_ignore_broadcasts`.  Is there a reason this
isn't done by default in order to discourage the use of Openwall boxes for
icmp DDoS attacks?  Secondly, I had to disable ctrl-alt-del reboots. 
Though this is more of a "personal choice" issue, it seems that allowing
anyone who can get their hands on the keyboard to reboot the machine
(possibly with a nasty floppy or cdrom in the drive) is insecure.  And
finally, it would be nice if `wipe` or some other secure deletion program
were included in the distro :).

Thanks for putting together such a squeaky-clean distro.  Now I can sleep
well at night...

Steve Olszewski
soso at busymonkeyNOSPAM. dot org

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.