Date: Wed, 30 Jul 2003 11:18:22 -0700 (PDT) From: Mike Hoskins <mike@adept.org> To: security@freebsd.org Subject: Re: suid bit files + securing FreeBSD (new program: LockDown) Message-ID: <20030730111512.S16789@fubar.adept.org> In-Reply-To: <20030730201400.1708d588.db@traceroute.dk> References: <20030730015431.4120c648.db@traceroute.dk> <20030730201400.1708d588.db@traceroute.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 30 Jul 2003, Socketd wrote: > Well, LockDown only has two files (the executable and the conf file) and > I'm gonna write it in C++, so making the C++ write a second program in a > different language (which I don't master) is maybe a little overkill ;-) Just as an aside, this sounds more and more like BastilleBSD. ;) If that's the direction you're headed, you may want to play with Bastille on a Linux bax (or vmware session) and see if you get any more ideas... Something that essentially automates the afore mentioned checklist would be very similar to Bastille already. (But for BSD, which I'm sure many would find useful.) Good luck, -mrh -- From: "Spam Catcher" <spam-catcher@adept.org> To: spam-catcher@adept.org Do NOT send email to the address listed above or you will be added to a blacklist!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030730111512.S16789>