> > From: Shridhar Daithankar > <[EMAIL PROTECTED]> > On Wednesday 12 April 2006 16:04, Ajitabh Pandey > wrote: > > I have blocked cron access for everybody except > root. > > Now is there any way I can do to prevent them from > > running a daemon or opening ports for > communication. > I don't think running for a long time makes a > program daemon. That is wrong way of detecting if > something is daemon.
True. The program normall works like (a.) Listen for connections on a certain port (b.) Connections comes in, aceepts and then fork a new process (c.) Continues to listen for connections. Isnt this a daemon. These are all perl scripts. Other scripts were being run, like every minute, are being run through cron jobs, which I have blocked > Correct way would be to employ some kind of RBAC, > grsecurity, selinux or something similar, may be > capabilities in linux 2.6 kernels. SELinux is there in red hat, was planning to implement it when we migrate RH based production servers to RHEL 4. Also capabilities, is in 2.6, and default kernel in RHEL3 is 2.4. Regards. Ajitabh Pandey __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 _______________________________________________ linux-india-help mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/linux-india-help
