Archive for April, 2009

Congratulations everyone!

Thursday, April 23rd, 2009

Looking forward

Friday, April 17th, 2009

Step by step, with 9.04 Ubuntu conquered another peek. It finally went up into the clouds. We could stop here and enjoy our glory, but there are higher peeks to conquer. Achieving higher goals is harder, more dangerous, but also provides more glory, and what’s more important, it gives us more satisfaction.

looking-forward

If we are going to tackle higher goals, we’ll need you and your ideas. Only together we can go even higher. So, visit http://brainstorm.ubuntu.com/server/ and give us some ideas, let’s push 9.10 above the clouds!

Let’s clear some FUD :)

Tuesday, April 14th, 2009

Ronald McCarty wrote an article ‘Your Distro is Insecure: Ubuntu’.

This is an answer to some of claims he stated.

Ronald starts with some valid points about default directory permissions. Right, we choosed 0755. There are valid use cases for 0700 and 0755. It’s impossible to set up a fit-for-all solution.

Next claim is that Ubuntu supports IMAP2 and POP2. Too bad Ronald can’t read netstat’s output correctly. Ubuntu (it’s actually dovecot we talking about here) doesn’t support POP2 and IMAP2. What Ubuntu/deovecot supports are IMAP4rev1 and POP3.

Before making this claims, author should know that IMAP4 is an extension of IMAP2, so it uses the same port as imap2. As you can’t define multiple names to one port in /etc/services, sane practice is to put imap2 there. netstat reads /etc/services and then claims that protocol is imap2.

Following this is claim that Ubuntu opens bootpc and bootps UDP ports when there’s a static network configuration. bootpc is clear sign that you have a running dhclient, Ronald. If you configured your network to a static IP during installation, you won’t have dhclient running. bootps, on the other hand, is a clear sign someone is running dhcp server.

So, while there are some valid points in that article, author should know better before writing articles like this one.