687
edits
Changes
Jump to navigation
Jump to search
mLine 15:
Line 15: +
Highlight security implications of installing custom applications
<nowiki>yum -y install gcc openssl-devel</nowiki>
<nowiki>yum -y install gcc openssl-devel</nowiki>
===Important Server Security and Administration Implications===
Installing gcc takes you off of the contribs.org reservation -- you <b>will</b> need to pay more attention to your server security than you would with a less customized configuration.
Installing gcc takes you off of the contribs.org reservation -- you <b>will</b> need to pay more attention to your server security than you would with a less customized configuration.
* Having gcc installed at all is considered a security weakness, in the sense that some attacks on your system are not possible if gcc is not installed, so with it installed there are are more possible ways that you might be attacked (I read about this in the 1990s, and have never heard that it is no longer true).
* Having gcc installed at all is considered a security weakness, in the sense that some attacks on your system are not possible if gcc is not installed, so with it installed there are are more possible ways that you might be attacked (I read about this in the 1990s, and have never heard that it is no longer true).