I'd go with Mandrake, since it has all of that stuff built in. Just do a
selective install and don't install the junk you don't need (Xwindows,
games, etc.)
Got it.
No such beast. Get Novell if you want a "file server" OS.
Webmin.
Samba.
You can download it for free, or buy it.
You have to do that yourself.
It's as secure as you make it.
What do you need IDS if it's going to live behind your firewall for? Surely
you dont plan on allowing netbios through your firewall???
Ext3, REISER, jfs, etc.
Piece of cake.

Open SSH
SAMBA
CUPS
Easy to achieve, see below.
"Necessary" is in the mind of the local sysadmin. If you use an rpm
based distribution, it's simple to get rid of the stuff you don't want.
What's not so simple is to know what it is you want to get rid of.
I'd install Nessus and scan myself as often as changes are made and not
less than weekly.

Picking a distro that Bastille will run on is a great starting point.
I've never seen a modern distro that didn't.
Snort amd snortsnarf.
Ok, now this is a debate. RPM or apt-get. Both have their upside and
downsides. RedHat offers up2date which I've used and it's outstanding,
but generally a little conservative on rev levels. Mandrake offers a
update manager as well. I've used them all, they all work.
Easily available with every one mentioned below, but I'd probably go
with ReiserFS instead. It's also journalled.
Not a problem. You're not in a hurry, eh? (In Linux, add ram first,
then cpu)
Should not be a problem, but I've not done it. Don't know if this is
cpu bound, but probably not.
Just install it.
Comes with Debian, Mandrake and Redhat.
Choose one of many and install it. This will take a while to get it
like you want it.
There goes Debian. You can use Alien, but it's not the same level of
integration.
Unless you run the escolade controller, you are better off with
Software RAID 0, 1 or 1+0. Cheap and fast. Quite stable. Many of the
'so called' ide raid controllers are crap and don't do a credible job.
I can point you to extensive conversations regarding this.

A P-166 is probably not a good choice here. Why worry about a high
performance disk i/o on a low performance machine? It will pretty much
negate any gain you might have. Just using SCSI would be faster.

Modern Linux kernels ignore the bios and mount large hard drives with
no problem. This is pretty much a non-issue these days.
Local CVS
tar
I don't think any mainstream distribution comes with this, but it's
easy to implement.
Install one. However, if this is to remain behind a firewall, it's
probably a moot point, and if you are going to be putting a server on
the internet, there's so many other things to deal with.
I've built and installed lots and lots of Linux boxes and I will say
this: I would go one of three paths.

1. LFS, or Linux from Scratch. This gives you the ultimate power to
define your OS.

Advantages are that everything is compiled from source code,
_everything_, and that you will know exactly what is in there because
you put it there.

Disadvantages, only one. It's time consuming.

2. Redhat 7.2 or Mandrake 8.2.

Advantages are that this gives you the ability to easily find RPM's
that fit and work without banging on them with a hammer. There is a LOT
to be said for running a mainstream distro and the more you install
onto it the more you will be aware of a non-mainstream distro. You will
fight it at many turns.

3. Debian base install and apt-get to get the pieces you want to run.

Advantages are that this is guaranteed to be totally open source and
freely licensed. Anything that is in apt-get repositories has been
rigorously inspected and packaged. Very stable.

My choices, in order of preference would be:

1. Mandrake 8.2's minimal server installation which I'm told can be a
~65 meg install. Then, you can add packages with RPM to go from there.
You will have a very late model kernel to work with, tons of software
that come on the three disk distribution, and a huge user community to
help you.

2. Redhat 7.2 Server install and then spend about 30 minutes with

rpm -qa

and

rpm -e

to list and uninstall everything that I didn't want. This has the
advantage of being a very stable distribution with virtually EVERY
package you would ever want to install being available as an rpm. One
of my favorite choices for a server bacause of addon availability. When
third party vendors release a package, this is always in their 'must
include' list.

3. Debian. This would be a great choice due to the integration of
apt-get and how well everything fits together with minimal fuss. Don't
underestimate this distribution. It's powerful and stable and easy to
administer. Requires slightly more Linux knowhow but gives back to you
in spades.

4. LFS primarily because it's so time consuming. This is the ultimate.

This is very off topic for this list, so may I invite you to join our
Linux User Group mailing list where we can discuss this at length and
there are lots of experts (in every category above) who can help you as
much as you need.

Go to http://leap-cf.org/mailinglist.php3 and join the main mailing
list. Very high signal to noise (very few off topic messages), newbies
-> experienced are welcome. The only real topic limitation is the
discussion of Linux. We have lot's of mailing list subscribers from
around the world, so it's not a local thing at all.

Phil Barnett
Former LEAP President, Vice President and current Ambassador.

It sounds like you'd rather start with BSD...

After installation, it has SSH on it. Period.

Then, you decide what stuff you want added.
Web management of the file server?... Hmmmm. Dunno about that one.
Samba.
I think Samba does Windows printer support as well, but I also
imagine there are Linux-based printer packages...

The Windows probably has more drivers, but the Linux one is probably
better stability/performance/feature-set... If you don't plan to
install a new printer every week, and if Linux supports the printers
you have, go with Linux. :-)
BSD.
Starts that way, and you decide what's worth the risk of adding.
Rather the point of the "grow your own" philosophy, and they tout
themselves as "secure"
Pretty sure those are easy to find.
Update what? Oh. The BSD software? Yeah, you go into the ports
directory of whatever you wanna update, and do:

./configure

BSD works by having scripts that automagically go look on the 'net
for new stable versions, and then configure and install those.

You can update whatever you want by just re-configur-ing.
I think that's something you can add trivially.
Sounds okay to me... Though if you're serving up a *LOT* of files to
a *LOT* of people, I'd speculate (pure speculation) that more RAM
might be your next purchase.
They're just files...

And you don't even need funky-ass streaming software 99.9999% of the time.

Just HTTP streaming works great. Create a text file with a URL to an
audio file, and link to the text file, and it's done.

Here's a site that uses that exclusively, and the dude is selling
like 10,000 CDs a month and PAID OUT US $ 1.3 *MILLION* to artists
you never even heard of, so you *know* he's getting some serious
traffic:

http://cdbaby.com

Here are live, real-time stats on his sales and such-like (scoll down a bit):
http://cdbaby.com/about

Use his search engine to name some famous artist you like, and he'll
churn out 10 CDs that sound kinda like it, only they didn't have the
$100,000 budget to bribe radio to force-feed it to you 100 times a
day. (Payola is live and well, in case you didn't know it... They
just use a middle-man to "hide" it)
Pretty sure you can do all that easily enough.
Dunno about that one...
Uhhh. Wait. You want all that stuff on your FIREWALL? Seems crazy to me...

Put all that stuff on your nice box in ORANGE and get an e-Bay $50
special box for your IPCop firewall and be done with it.
I dunno... I guess if you're suggesting a second firewall with all
those services on it behind an IPCop it might make sense...

Maybe I'm not understanding what you are after...