Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 11 May 2000 22:42:41 -0500
From:      "Jeffrey J. Mountin" <>
To:        stanislav shalunov <>
Cc:        freebsd-security@FreeBSD.ORG
Subject:   Re: daily run output
Message-ID:  <>
In-Reply-To: <>
References:  <"Jeffrey J. Mountin"'s message of "Thu, 11 May 2000 20:10:41 -0500"> <> <>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
At 10:48 PM 5/11/00 -0400, stanislav shalunov wrote:
>"Jeffrey J. Mountin" <> writes:
> > You could always force the ownership of .ssh/ and any files under it
> > to root.
>But the owner of the home directory can just "mv .ssh ssh-forget-me".
>If the user already has an authorized_keys file, he'd probably notice.
>Otherwise, especially if he doesn't ssh out from that machine or it
>has a good known_hosts file it can go unnoticed.

Whoops, forgot to add the flag so that it could not be deleted or removed. 

>Or did you mean "...and check that ownership didn't change daily"?
>(They could move the directories around daily, too.)

No.  Without the flags set, that would just create more work and do little 
for security.

Jeff Mountin -
Systems/Network Administrator
FreeBSD - the power to serve

To Unsubscribe: send mail to
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <>