Thanks a lot for the info,
Angel Ibanez
--
On Tue, 24 Jul 2001 21:33:27
civileme wrote:
>On Tuesday 24 July 2001 16:26, A B wrote:
>> My friends,
>> Let me ask you something regarding the last matter mentioned in this mail.
>> When you define low, normal or high security levels, does LM8.0 uses
>> different kinds of "ipchains" configurations? if not, what is the tool for
>> defining the security levels? I'd appreciate your help,
>> Angel ibanez
>>
>
>ipchains rules are for firewalls. The security level refers to internal security.
>
>The name of the internal security program is msec. Bastille was not ready for that
>task at release time.
>
>Low means some security checks are made and their results are sent to system logs
>SECURE_LEVEL=2
>
>Medium means more checks and nasty notes in root's mail about world-writeable files
>and at least a few corrections done automatically.
>SECURE_LEVEL=3
>
>High means you are not allowed to login as root, and everything is stopped until
>you start it. su will become your middle name and you may feel picked on from time
>to time as the msec daemon cleans up security matters behind you, automatically
>changing permissions on suspect files and notifying you
>SECURE_LEVEL=4
>
>Now you may wonder if there are additional security levels. There are. The range is
>0 to 5. 5 is termed PARANOID, and you will operate any insecure programs
>out of a chroot jail or not at all. An act of your governing body of choice and a
>one-time password verified by three honest computers is required to make a
>connection, and generally your computer doesn't recognize you any longer.
>
>Level 1 is called Poor. No password to login.
>
>Level 0 is called "Welcome to Crackers". No login at all as I recall. This is
>wonderfl for the unconnected game machine but very little else.
>
>Of course those levels are available only to the folks who use command lines.
>2-4 are available through the GUI.
>
>Civileme
>
>
Get 250 color business cards for FREE!
http://businesscards.lycos.com/vp/fastpath/
