|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Chapter 8 security
From: Jan Schaumann (jschauma
netmeister.org)
Date: Sun Apr 18 2004 - 21:19:44 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Luke Mewburn <lukemNetBSD.org> wrote:
> On Sun, Apr 18, 2004 at 02:54:34PM -0400, Greg A. Woods wrote:
> | The /etc/security support of /var/backups should even be sufficient for
> | the purposes of auditing "all system changes", and even the granularity
> | can be adjusted as necessary; though perhaps a well planned and deployed
> | tripwire install (or similar scheme, e.g. with mtree) would be even
> | better.....
>
> NetBSD 2.0 has /etc/mtree/set.*, which contains the mtree information
> including permissions and SHA1 hashes for all the files in the given set.
Uuuh, it does? Neat! I was not aware. We should publish the hashes
for each future release so that people can easily verify the integrity
of their binaries.
-Jan
--
If you are undertaking anything substantial, C is the only reasonable choice
of programming language.
-- UNIX User's Supplementary Documents
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (NetBSD)
iD8DBQFAgzdAfFtkr68iakwRAnd2AJ9eELS8DsfJCxKOWz5tj3+R1rMeVwCfT1DX
1v1FYDAAtT8KeuTeDPt8tU0=
=c9rL
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]