chesty wrote:
>
> On Tue, Feb 27, 2001 at 09:18:25PM +1100, Terry Collins wrote:
> > > Mount partitions read only where possible.
> > > I guess this is a good idea, but in what situation would this add security?
> > > You need to be root to be able to write to the partitions that I could mount read
> > > only, and if someone gets root, they can remount partitions read write.
> >
> > For a firewall, you want to prevent anyone being able to fiddle with it
> > and one way is to prevent people writing to it is to make it read only.
>
> Non root users can't write to it because of file permissions, root users
> can remount it read write. You haven't convinced me. Reading other peoples
> responses I can see some value in it.
Correct. Obviously your not thinking security. There is no such thing as
absolute security, you just increase the chances of finding signs of
access/changes/fiddling/attempts.. Even root users can fiddle the
firewall and make unauthorised changes to the firewall. If they make
changes, it should show on a log.
>
> > Tricks like Remote logging,
>
> Are you talking about syslog out a serial port?
> Is that a trick?
That is one option. Jargon lapse here- you pipe syslog to another
machine and log it there.
..snip...
--
Terry Collins {:-)}}} Ph(02) 4627 2186 Fax(02) 4628 7861
email: [EMAIL PROTECTED] www: http://www.woa.com.au
WOA Computer Services <lan/wan, linux/unix, novell>
"People without trees are like fish without clean water"
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
