better yet....if you are the sysadmin, dont give ANYBODY root...
Hudson, Delbert Contr 61 CS/SCBN Northrop-Grumman IT Los Angeles Air Force Base El Segundo, CA. PHONE: 310-363-2762 FAX: 310-363-6900 DSN: 833-2762 -----Original Message----- From: Takacs Istvan [mailto:[EMAIL PROTECTED]] Sent: Saturday, March 09, 2002 8:34 AM To: [EMAIL PROTECTED] Subject: RE: A bit O.T : Hiding firewall scripts Hi > >Is there any way I can make the scripts " a bit " unchangeable ? > > > > Get over it. Move on. You trusted someone with the root password and > they abused that trust - learn from that. Anything you put in place > can be unwound by a competent person with the appropriate access, your > best be would be to shut the person out of the machine, if you can. Use Linux capabilities. You can set up with this what root user can or can't do with your files. A good start for this: http://www.lids.org If you install the tools than you can enable or disable READ access to the file for every users including root, too. He/she needs the correct lids password to access the file. Regards; Istvan _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
