Date: Mon, 21 Oct 2002 00:34:53 -0000 (UTC) From: <soso@...ymonkey.org> To: <owl-users@...ts.openwall.com> Subject: a couple of friendly Owl security questions / comments Hi All-- I am blown away by the high level of security in the standard Openwall 1.0 install - Amazing job to all concerned! I have a couple of comments and questions, though. First, I had to `echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts`. Is there a reason this isn't done by default in order to discourage the use of Openwall boxes for icmp DDoS attacks? Secondly, I had to disable ctrl-alt-del reboots. Though this is more of a "personal choice" issue, it seems that allowing anyone who can get their hands on the keyboard to reboot the machine (possibly with a nasty floppy or cdrom in the drive) is insecure. And finally, it would be nice if `wipe` or some other secure deletion program were included in the distro :). Thanks for putting together such a squeaky-clean distro. Now I can sleep well at night... Steve Olszewski soso at busymonkeyNOSPAM. dot org
Powered by blists - more mailing lists
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.