Re: that webmin port

[Dave Uhring <duhring@charter.net>]

On Saturday 04 May 2002 09:05 pm, Jolan Luff wrote:
> swat is a small and optional part of samba which generates a samba
> configuration file. if samba required swat to be running at all
> times, then your comparison would have a bit more weight.
>
> i use pf to limit access to my ftp server (proftpd), but it was still
> rejected by espie as a port. i bitched and moaned and then shut up
> because i realized how stupid i was being. if your favorite software
> isn't in the ports, then install it manually.
>
> ports is not for the experienced and responsible openbsd user, it's
> for all users.
>
> for every person such as yourself who is comfortable using software
> with a spotty security history and restricting access, there are five
> users who have no idea what the potential risks are or don't take
> them seriously.
>
> ports is not a democracy, it's a dictatorship. the ports maintainers
> strive to keep bad software out, and good software up-to-date and
> maintained. yes, there's bias. if you take a step back, you'll
> realize that the maintainers are looking out for you, and have your
> best interests (security and quality software) at heart.

Well put, but webmin does NOT have to run all the time either.  Use it 
to configure the system and then shut it off, just like swat.

I have found the webmin tool to be quite useful in configuring DNS.  It 
gets the dots (.) in the right places.  But I then kill it and restart 
it only when I want to use it again.

And I most certainly do not run it on my NAT/router/firewall box!  Does 
Marc assume that our firewall boxen are going to be running such a tool?