Bug 2859

Summary: RH6.0 default setup comments
Product: [Retired] Red Hat Linux Reporter: weejock-rhbug
Component: initscriptsAssignee: David Lawrence <dkl>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 6.0   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 1999-05-18 20:41:51 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description weejock-rhbug 1999-05-16 22:26:55 UTC
The RH6.0 default setup looks OK, but there are a couple of
changes I'd like:

1) Services enabled by default which probably shouldn't be
dhcpd, nfs server.

Given that neither of these wil be any use without manual
configuration, I reckon that they should not be on by
default (especially given the number of machines rooted
through the mountd hole).


2) inetd services I'd like turned off:
linuxconf (perhaps controversial)
rlogind (old-fashioned - people should be using ssh or
telnet, IMG)


3) Default user "profile":
I always add:
[ -d /usr/local/bin/ ] && PATH="$PATH:/usr/local/bin"
to /etc/profile (I'd do an equivalent to /etc/cshrc if I
cared about csh users :)

Similarly, I think that the:
PATH=$PATH:$HOME/bin
on the default .bash_profile should be changed to:
[ -d "$HOME/bin/" ] && PATH="$PATH:$HOME/bin"


4) Overuse of "nobody"
It's good to see that xfs and gdm get their own users, but
I'd like to see at least apache and squid get their own
users, too.  It's not as if most RH machines are pushing the
16-bit uid_t :)


5) gpm too slow
On my PS/2 mouse, the default GPM sensitivity is too low.  I
add:
GPMOPTS="-r 30"
to /etc/sysconf/mouse, and add $GPMOPTS to the two daemon
lines in /etc/rc.d/init.d/gpm.

Comment 1 David Lawrence 1999-05-18 20:41:59 UTC
Thank you for th suggestions. Services that are run upon reboot can be
manually selected during the install such as nfs, dhcp, etc. Simply do
not check what you do not want. If it is an upgrade it tries to
maintain the same services that you currently have running. As always
there will be a need to edit the inetd.conf files by users to allow or
disallow vertain things. While we can try to disable more by default I
feel it is better addressed by having better documentation and
education for the end-user and allow them to make their choices on
what to run or not run. You have good points about the PATH stuff and
the nobody users being used that will be passed on to a developer for
further review.