Date: Sat, 22 Aug 1998 03:47:58 +0200 (SAST) From: Matthew West <mwest@cs.uct.ac.za> To: "B. Richardson" <rabtter@aye.net> Cc: Cc: ; Subject: Re: I want to break binary compatibility. Message-ID: <Pine.BSF.3.96.980822032507.14475A-100000@gimli.cs.uct.ac.za>
next in thread | raw e-mail | index | archive | help
B. Richardson wrote: > I have a problem with some hackers that are obsessed with making my > ISP's life miserable (they've already hacked our SGI). I've slapped > together a FreeBSD box to throw their webpages on it, turned off all > services except http. [snip] > What I want to do, if possible is build a uniq system such that binaries > from other systems will not run on it and vice versa. Is this possible? You can achieve pretty much the same effect by mounting /home and /tmp noexec. Additionally, do a search for suid files and remove any that are not necessary: # find / -perm \( -perm -u+s -or -perm -g+s \) -print (or take the section from /etc/security). --mwest@cs.uct.ac.za http://www.cs.uct.ac.za To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980822032507.14475A-100000>