From owner-freebsd-questions Fri May 4 14:54:50 2001 Delivered-To: freebsd-questions@freebsd.org Received: from hotmail.com (f262.law11.hotmail.com [64.4.16.137]) by hub.freebsd.org (Postfix) with ESMTP id E444E37B422 for ; Fri, 4 May 2001 14:54:46 -0700 (PDT) (envelope-from burnscharlesn@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 4 May 2001 14:54:46 -0700 Received: from 32.100.79.41 by lw11fd.law11.hotmail.msn.com with HTTP; Fri, 04 May 2001 21:54:46 GMT X-Originating-IP: [32.100.79.41] From: "Charles Burns" To: khera@kcilink.com, questions@freebsd.org Subject: Re: OT: FreeBSD Security tip Date: Fri, 04 May 2001 14:54:46 -0700 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 04 May 2001 21:54:46.0810 (UTC) FILETIME=[D5A0EFA0:01C0D4E4] Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG >CB> To prevent a potential snoop from looking at command logs or scrolling >CB> up IF at the local terminal (which is a security problem in and of CB> >itself) I set all users logoff scripts to delete their command log and CB> >clear the screen. > >Why not just set their shells *not* to keep the command log in the first >place? I would miss my scrollback buffer. ;-) It saves me quite a bit of time and I use is more frequently than probably any other non-critical feature of the command shell. On systems in which security is absolutely the most important issue, like DoD computers that store classified information, I would probably do that though. _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message