[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Shouldn't OpenBSD X11 come out with "-nolisten tcp" as default?
- To: misc_(_at_)_openbsd_(_dot_)_org
- Subject: Re: Shouldn't OpenBSD X11 come out with "-nolisten tcp" as default?
- From: Vladislav Belogrudov <belogrudov_(_at_)_yahoo_(_dot_)_com>
- Date: Mon, 29 Aug 2005 02:48:31 -0700 (PDT)
It reminds me approach
"we won't fix it because nobody reported a problem".
I think this is not obsd case and this is what
make difference between obsd and commercial unix.
PS. X11 is not a secure thing you can trust that easy
--- Han Boetes <han_(_at_)_mijncomputer_(_dot_)_nl> wrote:
> Vladislav Belogrudov wrote:
> > I thought it would make sence for most secure OS.
> > One port less listening the World.
> It's not a security problem to have an open port.
> It's a security problem to
> have a bad server listening to an open port.
> And since nobody knows about a problem with the X
> server, not even the people
> who have very deep knowledge about X and about
> security you can safely assume
> it's OK to have that port open by default.
> Now if you don't trust any of all those experts and
> you want to close that port
> for your own machine that's fine, but don't ask the
> experts to trust on your
> intuition while they are providing the OS in the
> first place.
> # Han
Start your day with Yahoo! - make it your home page