Linked by Steve Husted on Mon 12th Apr 2004 09:30 UTC
Slackware, Slax This is an article about my experiences with Slackware 9.1, a distribution of Linux that I find enjoyable, along with programs that I find useful and enjoyable.
Permalink for comment
To read all comments associated with this story, please click here.
RE: slackwares flaws
by root on Mon 12th Apr 2004 14:12 UTC

First off, I'd say that less than 1% of servers, even in environments that are serious about security, have MAC patches. While I do think they should be used more often, they are definately not mandatory for security.

???

I don't know who has been selling you those comforts. Did you read about Debian, Gentoo, etc server compromises? Chroot kits. Yes, simple chroot kits were used to perpetuate those breaches. Now if chroot restrictions and MACs were properly implemented, that would have been almost impossible because on well controlled systems, there is no root or superuser, or even if there is, the it is not all powerful and all knowing, it has restricted authorities. Again, I'm dumbfounded by your statement.

Second, EVERY good security person that I know, would rather install something themselves from source with a watchful eye than let emerge or RPM, or swaret, or even installpkg handle it.

You don't get the message I'm trying to convey, do you? Slackware doesn't provide the facility to patch each and every package from source like Gentoo/emerge does. There are no documentations, no packages, and no patches. Nadda, zilch, nothing! You want security, forget about slack. That's how bad it is.

It is no major accomplishment to get selinux, grsecurity, and their friends installed on slackware.

Who's talking about accomplishments? I'm talking about securing my workstation and network and my inability to do so with slackware. These aren't accomplishments, every administrator is mandated to secure his resources. Accomplishment??? It is a freaking missing security feature!