Posted Apr 7, 2011 19:15 UTC (Thu) by Trelane
In reply to: Supporting CentOS
Parent article: Supporting CentOS
there can be no contesting the fact that every CentOS 5 system out there is currently running with a significant set of known holes
A well-managed general CentOS unit exposed to the internet (or even just to unknown hostile 'trusted insiders' in a private network segment) is not running without iptables and wrappers, and is not exposing all services on all possible ports.
So what you're saying is that yes, there are holes, but they're covered with a piece of sheet metal.
You're not contesting the existence of holes; rather, you're claiming they're not exploitable holes due to other security measures in place.
to post comments)