On Sat, 4 Apr 1998, Ben wrote:
> Recently my friend and I set up a linux box for him and put it on
> the net 24/7. Now he has given some accounts to some not very trust
> worthy people.
Welcome to the club. :)
> have done password shawdowing, but that is about it. I would apreciate
> any and all suggestions.
That's really about all that is needed. The only other things I can
suggest are to apply all the errata you can get your hands on, and to
subscribe to the rootshell and bugtraq mailing lists. If one of them
reports a problem with your software, disable it immediately if not sooner
(by doing a chmod 0 <filename>) even if this breaks some of your system
functionality. Then go through and apply the workarounds, and only once
you are sure that they have been properly applied, should you reactivate
the insecure program.
There is really no way to recover from a root compromise other than a full
reinstall. You don't want that, so best to not have them in the first
place.
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
