Date: Fri, 28 Aug 1998 10:32:07 +0200 (CEST) From: Zahemszky Gabor <zgabor@zg.CoDe.hu> To: freebsd.org!freebsd-security@zg.CoDe.hu Subject: Re: post breakin log Message-ID: <199808280832.KAA00493@CoDe.hu> In-Reply-To: <1652.904271528@gjp.erols.com> from Gary Palmer at "Aug 27, 98 10:32:08 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
> Brian Behlendorf wrote in message ID > <19980827182323.6798.qmail@hyperreal.org>: > > Is there a fool-proof way to get user histories like this? I got one once > > only because the cracker was lame enough to forget to delete his > > .bash_history file. Presuming root isn't compromised of course... > > Force the history files to be created with uappend flag set and run with a non > zero security level. Please! What is the correct way to change security-level? Where can I do it? Yes, I know that in rc*, but which? And where? ZGabor at CoDe dot HU -- #!/bin/ksh Z='21N16I25C25E30, 40M30E33E25T15U!' ;IFS=' ABCDEFGHIJKLMNOPQRSTUVWXYZ ';set $Z ;for i { [[ $i = ? ]]&&print $i&&break;[[ $i = ??? ]]&&j=$i&&i=${i%?};typeset -i40 i=8#$i;print -n ${i#???};[[ "$j" = ??? ]]&&print -n "${j#??} "&&j=;typeset +i i;};IFS=' 0123456789 ';set $Z;X=;for i { [[ $i = , ]]&&i=2;[[ $i = ?? ]]||typeset -l i;X="$X $i";typeset +l i;};print "$X" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199808280832.KAA00493>