The debian-private mailing list leak, part 1. Volunteers have complained about Blackmail. Lynchings. Character assassination. Defamation. Cyberbullying. Volunteers who gave many years of their lives are picked out at random for cruel social experiments. The former DPL's girlfriend Molly de Blanc is given volunteers to experiment on for her crazy talks. These volunteers never consented to be used like lab rats. We don't either. debian-private can no longer be a safe space for the cabal. Let these monsters have nowhere to hide. Volunteers are not disposable. We stand with the victims.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security: How we did it

To: Debian private list <debian-private@lists.debian.org>
Subject: Re: Security: How we did it
From: Ian Jackson <ian@chiark.greenend.org.uk>
Date: Mon, 18 Nov 96 05:02 GMT
Importance: low
Priority: non-urgent
Resent-from: debian-private@lists.debian.org
Resent-message-id: <"ZQT4M3.0.E07.E70ao"@master.debian.org>
Resent-reply-to: debian-private@lists.debian.org
Resent-sender: debian-private-request@lists.debian.org

Christoph, you seem to be taking the line that anyone who gives people
shell access to their system should not also run applications on it
that are important to them, or that (it seems to me, for example)
someone who installs dosemu should expect people to be able to get
root on their system.

As Bruce has pointed out, not everyone has the money or space for n
machines for n different security levels.  But, there is really a more
fundamental issue at stake:

It is not for you to decide on a security policy for every
administrator of a Debian system.

We should ship our systems so that they are by default consistent with
a reasonably tight security policy.  If a sysadmin wants (for example)
to allow all users to run pppd or dosemu then they can easily set this
situation up for themselves.

On the other hand, a sysadmin who wants to run a reasonably secure
machine should not be required to configure every individual risky
program to disable it or make it run securely or only be available to
trusted users.  This would be an impossible requirement, since no
admin can be expected to have that much time on their hands.  The
result would be that noone could run a secure Debian system that was
also functional.

Ian.

--
Please respect the confidentiality of material on the debian-private list.
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-private-REQUEST@lists.debian.org . Trouble? e-mail to Bruce@Pixar.com

Follow-Ups:
- Re: Security: How we did it
  - From: Christoph Lameter <clameter@waterf.org>

Prev by Date: Re: Security: How we did it
Next by Date: Re: Binary-Only packages
Previous by thread: level of discourse
Next by thread: Re: Security: How we did it
Index(es):
- Date
- Thread