On Wed, 30 Mar 2005 22:17:12 -0800 (PST), "Rahul Sundaram" rahulsundaram@yahoo.co.in said:
http://members.cox.net/tuxxer/ch-chapter2.html
Since this is out of scope for your document by your own admission it would be better to just drop this. Kernel recompilation or additional hardening is unnecessary for the large majority of users and worse gives the idea that the kernel requires active manual intervention to make it secure.
I think that the main issue is that the specified audience ("all users") doesn't match up with the intent (a comprehensive security overview). I don't see there's anything wrong with saying that it's a detailed guide for more advanced users, and leaving the basic security stuff for another doc - 1) don't mess with the defaults without a reason, 2) run updates, 3) there is no step 3 :)
--
Stuart Ellis