Date: Wed, 19 Sep 2018 06:28:22 -0700 (PDT) From: "Jeffrey Bouquet" <jbtakk@iherebuywisely.com> To: "current" <current@freebsd.org> Subject: just a FYI Message-ID: <E1g2cWk-0005mY-8K@rmmprod06.runbox>
next in thread | raw e-mail | index | archive | help
/usr/ports/security/lockdown [ sorry if this is a PR or for ports- ] altered fstab, login.conf and ttys locking me out of my main machine, proba= bly due to the password hash, but only a daily backup helped me login again and fix= the=20 damages, with a few files "hardened" maybe but at a cost of uncertainty=20 as to whether the net benefit was good/bad once the system is back up, as it is now. It fortunately only took me about an hour. This would have been much mor= e=20 problematic if I had not had 14 years experience in FreeBSD. Can someone alter the port to log its actions, create backups, ask permis= sion for each block of edits it is about to undertake, etc, so someone with critical= server data or less of a backup doesn't suffer the same? Something like a mergemaster w= ould...=20=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E1g2cWk-0005mY-8K>