Date: Mon, 1 Oct 2001 21:34:13 -0700 (PDT) From: "f.johan.beisser" <jan@caustic.org> To: David Kirchner <davidk@accretivetg.com> Cc: default <default013subscriptions@hotmail.com>, freebsd-security@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: file permission question Message-ID: <Pine.BSF.4.21.0110012130480.4143-100000@pogo.caustic.org> In-Reply-To: <20011001202424.X85958-100000@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 1 Oct 2001, David Kirchner wrote: > On Mon, 1 Oct 2001, f.johan.beisser wrote: > > Running a file integrity check such as tripwire is also a good idea - as > long as you run tripwire from a read-only floppy or something similar that > is. :-) excellent point, one that i totally flaked on. although, tripwire is only semi-preventative, it's more of a manner of making sure that someone has been able to change either binaries or directories on the server. sadly, it can't help with changed files. there are some excellent documents on 'hardening' your OS-of-choice out there, including some on hardening FreeBSD. a quick google search should turn some up. i would suggest reading some of the infomation available on SecurityFocus.com's site. -- jan -------/ f. johan beisser /--------------------------------------+ http://caustic.org/~jan jan@caustic.org "if my thought-dreams could be seen.. "they'd probably put my head in a gillotine" -- Bob Dylan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0110012130480.4143-100000>