Date: Fri, 16 Feb 2001 13:33:31 +0000 From: Rasputin <rasputin@FreeBSD-uk.eu.org> To: security@freebsd.org Subject: Re: File flags Message-ID: <20010216133331.A48008@dogma.freebsd-uk.eu.org> In-Reply-To: <p04330100b6b2d6708b25@[134.76.136.114]>; from rbeer@uni-goettingen.de on Fri, Feb 16, 2001 at 02:15:31PM %2B0100 References: <p04330100b6b2d6708b25@[134.76.136.114]>
next in thread | previous in thread | raw e-mail | index | archive | help
* Ragnar Beer <rbeer@uni-goettingen.de> [010216 13:17]: > Howdy! > > I'm wondering which files I should protect with file flags. So far I only > protected a couple of flags in /var/log but last week I read that someone Is that a good idea? What happens if they need ot be rotated? > suggested making files in the /bin /sbin /etc directories immutable. How much > sense does that make? Depends what securelevel you're in. Also there is a case for saying that this makes intrusions harder to detect, although that sounds to me like saying: "If the cupboards in your house are locked up, how are you supposedd to tell when you've been burgled?" -- Rasputin Jack of All Trades :: Master of Nuns To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010216133331.A48008>