On Tuesday 24 July 2001 16:26, A B wrote:
> My friends,
> Let me ask you something regarding the last matter mentioned in this mail.
> When you define low, normal or high security levels, does LM8.0 uses
> different kinds of "ipchains" configurations? if not, what is the tool for
> defining the security levels? I'd appreciate your help,
> Angel ibanez
>
ipchains rules are for firewalls. The security level refers to internal security.
The name of the internal security program is msec. Bastille was not ready for that
task at release time.
Low means some security checks are made and their results are sent to system logs
SECURE_LEVEL=2
Medium means more checks and nasty notes in root's mail about world-writeable files
and at least a few corrections done automatically.
SECURE_LEVEL=3
High means you are not allowed to login as root, and everything is stopped until
you start it. su will become your middle name and you may feel picked on from time
to time as the msec daemon cleans up security matters behind you, automatically
changing permissions on suspect files and notifying you
SECURE_LEVEL=4
Now you may wonder if there are additional security levels. There are. The range is
0 to 5. 5 is termed PARANOID, and you will operate any insecure programs
out of a chroot jail or not at all. An act of your governing body of choice and a
one-time password verified by three honest computers is required to make a
connection, and generally your computer doesn't recognize you any longer.
Level 1 is called Poor. No password to login.
Level 0 is called "Welcome to Crackers". No login at all as I recall. This is
wonderfl for the unconnected game machine but very little else.
Of course those levels are available only to the folks who use command lines.
2-4 are available through the GUI.
Civileme
