Is anyone looking at changing the defaults on a lot of the services to make them more secure from first install? For example, ssh defaults to allowing root login. Another example is vsftpd allows anonymous ftp by default. It would seem that if we had a more secure set of defaults to begin with, then we'd be setting people up for success more than failure. Greg