Fedora Security Policy

Jorge Bras jorge at konnekt.org
Tue Jan 20 22:22:42 UTC 2009


Hi there,

in iptables config, why not, change the default forward policy to drop ?
by default ip forwarding is off, but I think is a good practice deny  
everything by default, just in case.

cheers,
./bras

On Jan 20, 2009, at 4:34 PM, Mike McGrath wrote:

>
> So I've added some suggested changes and would like to do this on  
> the list
> instead of on IRC.  So here's what I propose:
>
> http://mmcgrath.fedorapeople.org/policy/ [1]
>
> 1) I'd like everyone in a sysadmin* group to be compliant with this  
> policy
> as part of orientation for new members.
>
> 2) I'd like everyone who is already in a sysadmin* group to become
> compliant with this standard by March 31st 2009.  PLENTY of time to  
> make
> whatever changes you need to make.
>
> 3) We'll continue to refine this policy but never with the  
> assumption that
> everyone is immediately compliant.  Notice will be given.
>
> 	-Mike
>
> [1] I'm working on finding permanent hosting for that, but for now
> fedorapeople will work.
>
>
>
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>




More information about the infrastructure mailing list