Date: Wed, 2 Jan 2002 16:37:45 +0100 (CET) From: Oliver Fromme <olli@secnetix.de> To: freebsd-questions@FreeBSD.ORG Subject: Re: MOTD -- Warning banners Message-ID: <200201021537.g02Fbj658803@lurza.secnetix.de> In-Reply-To: <Pine.GSO.4.31.0201021445050.9788-100000@mail.ilrt.bris.ac.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Jan Grant <Jan.Grant@bristol.ac.uk> wrote: > On Wed, 2 Jan 2002, Cliff Sarginson wrote: > > Any way if he does > > # cd / > > # rm -rf * > > > > Recording it isn't going to be much of a comfort. > > That's what securelevels (and/or remote loghosts) are for. Furthermore, you can also log to a remote system, so the attacker would have to find and hack that one, too, in order to remove all traces. Finally, if you're _really_ paranoid, you can copy syslog onto a hardcopy printer. One of those fast dotpin line printers, so you can easily detect a DoS attack by the increased noise level. ;-) Regards Oliver -- Oliver Fromme, secnetix GmbH & Co KG, Oettingenstr. 2, 80538 München Any opinions expressed in this message may be personal to the author and may not necessarily reflect the opinions of secnetix in any way. "All that we see or seem is just a dream within a dream" (E. A. Poe) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200201021537.g02Fbj658803>