alt Hacker NewsThe only thing I can say against Debian is that it tends to start new server software immediately after install, before I have a chance to configure it properly. Defaults are sane for most packages, but, still, it scares me a little. In that I like the Red Hat approach of installing and leaving it off until I decide to turn it on.
Replies
JackeJR • last Sunday at 4:08 AM
Just have sane firewall rules and you are good. E.g. if I install openssh-server and it auto starts, it doesn't make it out of my machine because my nftables does not allow inbound on port 22. It's just knowing the default behaviour and adjusting your practices for it.
➕ show 4 replies
It is a well-known issue with probably less well-known solutions, cf. <https://unix.stackexchange.com/questions/723675/debian-ubunt...>
I think this is the recommended way to avoid autostarting services on Debian.