On Mon, 21 May 2007, Thilo Bangert wrote: > > I've held off on using Gentoo in larger deployments because the idea of > > putting a C compiler on a production box is just silly. > > why? > > some production quality software _requires_ a compiler to run. > http://varnish.projects.linpro.no/wiki/FAQ
As do many rootkits. If somebody gets local access to a server with a suite of development tools they're well on their way to rooting the box. Removing these tools is simply a good example of security in depth. -Ronan -- [EMAIL PROTECTED] mailing list
