Hi Chris Yes I know that this one is annoying and I know that you can configure things in a proper way. However the intention with the harden-* suite is that you will get a more hardened system without the need to make special configurations manually.
However I appriciate your feedback on this and if I or someone else find a very good solution to this, I will happily apply a good patch. Thanks // Ola On Sat, Jan 17, 2009 at 03:30:29AM +0100, Christoph Anton Mitterer wrote: > Package: harden-servers > Severity: wishlist > > Hi. > > The conflict with portmap makes it "nearly" ;) impossible to install > harden-servers on a desktop machine, as fam depends on it (which is > recommended or depended on by GNOME, etc.). > As portmap can be bound to the loopback interface (which should make > it "secure") wouldn't it be possible to drop the conflict and replace > it by either a warning to the user (e.g. via some debconf message) or > via some script run by cron, that checks whether portmap is configured > to be bound to 127.0.0.1? > > Thanks, > Chris. > > > -- System Information: > Debian Release: 5.0 > APT prefers unstable > APT policy: (500, 'unstable') > Architecture: amd64 (x86_64) > > Kernel: Linux 2.6.26 (SMP w/2 CPU cores; PREEMPT) > Locale: LANG=en_DE.UTF-8, LC_CTYPE=en_DE.UTF-8 (charmap=UTF-8) > Shell: /bin/sh linked to /bin/dash > > > ---------------------------------------------------------------- > This message was sent using IMP, the Internet Messaging Program. > > > > -- --------------------- Ola Lundqvist --------------------------- / o...@debian.org Annebergsslingan 37 \ | o...@inguza.com 654 65 KARLSTAD | | http://inguza.com/ +46 (0)70-332 1551 | \ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 / --------------------------------------------------------------- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
