User: Password:
|
|
Subscribe / Log in / New account

Multiple problems, lack of security awareness

Multiple problems, lack of security awareness

Posted Feb 14, 2008 7:08 UTC (Thu) by Cato (subscriber, #7643)
Parent article: Eee PC security or lack thereof

One major part of this problem is that Samba was enabled out of the box - I would have
expected the eee PC to be set up as a pure client, like Ubuntu Desktop is, i.e. absolutely no
open ports for servers.  Of course, if ASUS had simply used Ubuntu with minimal customizations
on top, they would have had updates for free, as with most other non-embedded distros.

It would also be sensible to have a simple firewall installed with a GUI to configure it, to
ensure that Samba could only be used (say) within a home LAN.

Some sort of safe-mode in which no server ports are allowed would be a good idea as well.

However, there also needs to be some awareness on the part of eee PC users that this is a
powerful device that must be security updated - more like a full PC than an appliance, but the
same is true of any device with a web browser, e.g. most mobile phones these days.


(Log in to post comments)

Multiple problems, lack of security awareness

Posted Feb 14, 2008 12:16 UTC (Thu) by cortana (subscriber, #24596) [Link]

Doesn't Ubuntu ship with avahi enabled by default?

Multiple problems, lack of security awareness

Posted Feb 14, 2008 20:16 UTC (Thu) by bfields (subscriber, #19510) [Link]

I thought most attacks these days were on clients (especially mail and web clients), not
servers?

But that would at least address the "how do you get security updates on first boot"
problem--just get them installed before starting the web browser....


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds