On Tue, 23 Dec 2003 11:21:47 +0800, "Ganesan Kanavathy" <[EMAIL PROTECTED]> said: > I have one incident last week that on my client PC someone has deleted > the > whole partition and the apache directory. Possibly he have known the root > password.
You dont need a root password to do something like that. There are multiple vulnerabilities in software included with a Linux distro, and also with Linux kernels, that allow people to break into and delete stuff. Also, insecure configurations help breakins. > I want to disable any user from changing any configuration on a Linux > box. > Basically they cannot delete or edit any files even though they know the > root password. eh? You dont want to do stuff like that. Anyway, why should multiple people have the root password? Read up some security documents, starting from say the Rute tutorial, http://rute.sf.net the Security howto at http://www.tldp.org, the Linux System admin guide, and the Trinity OS guide by David Ranch. Once you have read atleast these documents, you'd know what and where to read further. For current needs, look at chrooting users to specific directories, and use of sudo, use of chattr, etc. And _do not_ give the root password to multiple people. Plan out a decent security policy with your client, or if you can get an external security consultant to do the job. > Is there any way I like I need to some diskettes in a drive to > authenticate > and then only we can edit any files. > You could. Dont go for a "diskette based" authentication. Use a local LDAP, behind a firewall for the auth. But first, read the security docs. -- Sthitaprajna http://puggy.symonds.net/~zeeble -- http://www.fastmail.fm - Faster than the air-speed velocity of an unladen european swallow ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
