Date: Thu, 27 Aug 1998 22:32:08 -0400 From: "Gary Palmer" <gpalmer@FreeBSD.ORG> To: Brian Behlendorf <brian@hyperreal.org> Cc: Wilson MacGyver <macgyver@cylatech.com>, security@FreeBSD.ORG Subject: Re: post breakin log Message-ID: <1652.904271528@gjp.erols.com> In-Reply-To: Your message of "Thu, 27 Aug 1998 11:16:01 PDT." <19980827182323.6798.qmail@hyperreal.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Brian Behlendorf wrote in message ID <19980827182323.6798.qmail@hyperreal.org>: > Is there a fool-proof way to get user histories like this? I got one once > only because the cracker was lame enough to forget to delete his > .bash_history file. Presuming root isn't compromised of course... Force the history files to be created with uappend flag set and run with a non zero security level. Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1652.904271528>