On Fri, 1 Dec 2000, Jonathan Wilson wrote:
> 1. bind
Most likely you're using this (if at all) as a local only cache which is
really a pretty useful thing to have. IF you are using it as a local cache
why not add "listen-on { 127.0.0.1; };" to the options section of named.conf
to at least keep the outside world from sticking their noses in. IF you do
delete it you probably want to leave the bind-utils package behind. This
contains client programs like nslookup which you might miss. :)
> 2. ypbind (what is ypbind for?)
If you were using it you'd know. :) Ditch it. Ditto yp-tools and ypserv.
> 3. usermode
On a desktop this is a very useful package - lets you get do various admin
tasks like powering doing and (u)mounting filesystems as a non-privledged
user. No known problems with it at this time but there have been in the
past and anytime privledges are involved you want to be a suspisious just on
principle. On a multi-user server with shell accounts i'd say get ride of
it but you might like to find out about it some before you decide.
In a similar vain you might want to remove the suid bits from utilites like
mount, umount, dump, restore, usernetctl and netreport. They do things that
in most cases you probably only want root doing anyway. To a lesser extent
the same goes for things like ping, traceroute, suidperl, rsh, rlogin, rexec
et all.
> 4. mailx
Alot of scripts and programs assume they can use /bin/mail to get the word
out. If you remove mailx things might not work too good. :)
> 5. umb-scheme
It's a programing language. No real risk involved in keeping it but i doubt
you'll miss it.
> 6. lpr - because we don't print from our web servers :-)
Don't print - don't need it. :) And since it contains suids you should
defintily remove it.
You might also want to think about removing are inn (news server) and ncpfs
(for access novel filesystems).
M.
--
WebCentral Pty Ltd Australia's #1 Internet Web Hosting Company
Level 1, 96 Lytton Road. Network Operations - Systems Engineer
PO Box 4169, East Brisbane. phone: +61 7 3249 2583
Queensland, Australia. pgp key id: 0x900E515F
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
