Date: Mon, 31 May 1999 21:53:28 -0400 From: "Joe Gleason" <clash@tasam.com> To: "Unknow User" <kernel@tdnet.com.br>, <security@FreeBSD.ORG> Subject: Re: Shell Account system Message-ID: <002701beabd1$90441c90$7271a1ce@tasam.com> References: <3752E531.54B2845C@tdnet.com.br>
next in thread | previous in thread | raw e-mail | index | archive | help
Use find to locate all suid programs on the system. Remove suid from any you don't think you need. Read man pages if unsure. If still unsure, remove suid anyways. Edit /etc/inetd.conf Disable everything you don't know you need. (As above with suids) Go through rc.conf. Disable things you don't need. If you have a program or service you are installing, try to see if you can get it to run as non-root. I usally like this aproach of removing things that you don't need to minimize security risk. Joe Gleason Tasam ----- Original Message ----- From: Unknow User <kernel@tdnet.com.br> To: <security@FreeBSD.ORG> Sent: Monday, May 31, 1999 15:38 Subject: Shell Account system > I have plans to set up a FreeBSD box to act as a shell account! > I know that security on shell account servers NEED to be very fine, > right? > Does anybody can point me some url where i can read security tips on > FreeBSD/UNIX ? > Another questions: where can i read a good tutorial avbout opie ? > > > -- > "The box said 'Requires Windows 98, NT, Linux or better' so I > installed FreeBSD." > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?002701beabd1$90441c90$7271a1ce>