Am 28. Jan, 2003 schw=E4tzte James Bunnell so:

> On Tue, 2003-01-28 at 12:35, der.hans wrote:
>
> > It is directly m$'s fault. m$ quietly installs m$sql for several softwa=
re
> > packages. It's part of their m$de that's reportedly installed for certa=
in
> > releases of packages like visio, m$ project, and m$ office. So not only=
 does
> > it default to a bad setup, but people don't even know it's installed. T=
hey
> > should know, but that's discouraged in the m$ce world...
>
> So, I can blame Debian directly for allowing me to install XFree86 4.2.1
> and breaking my config? And if I dont run apt-get or up2date often

You could blame them if they installed portmap by default, which they
unfortunately do, such that it, with a default config, was accessable via
the network. Oh, I used to go off on RedHat for doing just that.

https://www.LuftHans.com/unix/docs/HOWTO/securing_RedHat.html

Also note that the GNU/Linux dists make many audit tools available, e.g.
nmap, lsof, netstat, ps, tons of packet sniffers and just about anything
else you'd want.

I can also peel open the packages and see what they contain before
installing them.

> enought its still Debian and Redhat's fault? Because they release
> updates more often than M$. Bleh.

Part of my point was that debian releases updates for the security issues
and doesn't try to cram a bunch of other stuff down my throat and certainly
not a change in the licensing. Not for security fixes. debian also doesn't
run a scam certifying people who paid to take marketing classes as competen=
t
sys_adms.

ciao,

der.hans
--=20
#  https://www.LuftHans.com/    http://www.TOLISGroup.com/
#  Knowledge is useless unless it's shared. - der.hans