On Wed, Jul 25, 2001 at 05:33:27PM +0800, Orlando Andico wrote: > We all love rpm -V. It's only a matter of time when: > > a) some worm will fudge the rpmdb (hech there's rpm-devel for that..) > b) some worm will screw rpm itself > > That's why with tripwire you're advised to store the checksums on a > read-only media. yeah this much I've realized. I've already dealt with the joker deleting the rpm binary, which can be undone by copying the binary from elsewhere. LIDS is a step in the right direction - it's already being used in production (sorry no details, hehe) and it can protect the rpmdb from being touched from anything beside the legit rpm binary. I suggest we all learn this, or the other stuff like the Linux ACL's which I have not seen yet. -- http://www.internet.org.ph Philippine Internet Resources _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
