From owner-freebsd-questions@FreeBSD.ORG Tue Feb 7 14:45:07 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1E54D1065673 for ; Tue, 7 Feb 2012 14:45:07 +0000 (UTC) (envelope-from frank@esperance-linux.co.uk) Received: from asmtp5.iomartmail.com (asmtp5.iomartmail.com [62.128.201.176]) by mx1.freebsd.org (Postfix) with ESMTP id 8B46B8FC1C for ; Tue, 7 Feb 2012 14:45:06 +0000 (UTC) Received: from asmtp5.iomartmail.com (localhost.localdomain [127.0.0.1]) by asmtp5.iomartmail.com (8.13.8/8.13.8) with ESMTP id q17Ej42M008044; Tue, 7 Feb 2012 14:45:04 GMT Received: from orange.esperance-linux.co.uk (host-92-22-172-52.as13285.net [92.22.172.52]) (authenticated bits=0) by asmtp5.iomartmail.com (8.13.8/8.13.8) with ESMTP id q17Ej1m4007961; Tue, 7 Feb 2012 14:45:02 GMT Received: by orange.esperance-linux.co.uk (Postfix, from userid 1001) id E4B9C33C1F; Tue, 7 Feb 2012 13:29:03 +0000 (GMT) Date: Tue, 7 Feb 2012 13:29:03 +0000 From: Frank Shute To: Henry Olyer Message-ID: <20120207132903.GA4616@orange.esperance-linux.co.uk> References: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="9jxsPFA5p3P2qPhR" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.2.3i X-Face: *}~{PHnDTzvXPe'wl_-f%!@+r5; VLhb':*DsX%wEOPg\fDrXWQJf|2\,92"DdS%63t*BHDyQ|OWo@Gfjcd72eaN!4%NE{0]p)ihQ1MyFNtWL X-Operating-System: FreeBSD 8.2-STABLE amd64 X-Organisation: 'shute.org.uk' Cc: FreeBSD Mailing List Subject: Re: on hammer's, security, and centrifuges... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Frank Shute List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Feb 2012 14:45:07 -0000 --9jxsPFA5p3P2qPhR Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Feb 07, 2012 at 07:03:50AM -0500, Henry Olyer wrote: > > So I was coding along... >=20 > On my laptop, on session #1, and I get a notice that someone did an su. > Except I'm the only user and I didn't have an ethernet cord connected. > (And no, it wasn't me...) "someone". Whom? Show us the log. >=20 > I just built this laptop a few days ago. Fresh. I did have to get on the > net to download/make/install a few critical packages. I do development. > And research. >=20 > My guess, not one shred of evidence, is that someone got in while I was > re-building packages. Some, (for example Maxima,) take hours. And becau= se > of problems with gnuplot and pdflib, won't build as packages without > re-compilation. Compare times of su to time when you were building. >=20 > Look, I'm going to use FreeBSD as long as both it and I am around, it's > just the best choice for me, for my user's. But we need to improve > security. >=20 > I'm not a security expert, my work is in another area. But I would like = to > suggest that the FBSD be enhanced so that each load module, each compiled > program, contain a DSA-based public key. Yes, this would make installing > and maintaining systems an all-day run. But some of us need a higher > degree of security than is presently available. >=20 > For now, until I remake my laptop, I'm going to disable the ath0 wireless. Did you use the procedure outlined in the handbook? It uses WAP and is pretty secure. >=20 > How? What's the best method to make certain that my wireless chip is > turned off? Turn the chip off in the BIOS. But that is overkill. Can probably ifconfig ath0 down or something of the sort. >=20 > Or is this something best accomplished with a hammer? Not a pleasant > thought... >=20 > (Oh, and centrifuges?, well two out of three isn't bad. About centrifuges > I got nothing.) >=20 > Is their something I can do that would help the FBSD security people?, or, > is hacking so routine that it wouldn't help to know the particulars. > sigh... No, it would help to know the particulars. Regards, --=20 Frank Contact info: http://www.shute.org.uk/misc/contact.html --9jxsPFA5p3P2qPhR Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (FreeBSD) iEYEARECAAYFAk8xJx4ACgkQHduKvUAgeK7S3QCeN7+y537+SukPADa+/geaI27O 1RUAoIiQg6laelpyPVQ2nYtQLlTBj/oX =uSu3 -----END PGP SIGNATURE----- --9jxsPFA5p3P2qPhR--