In article <[EMAIL PROTECTED]> you wrote:
> IIRC I did something like this a few years ago and it didn't cause
> corruption, it just resulted in the package installation failing.
Yes, but it leaves them a bit confused (selected but uninstalled). It is
worse if you mount /var noexec.
Greetings
Ber
In article <[EMAIL PROTECTED]> you wrote:
> The immutable bit can be removed from a file on a running system. I just
> confirmed this on a box to make sure recent kernels hadn't changed this
> behaviour.
Depends on capabilities settings. Capabilities control must be in effect for
that. Older kern
In article <[EMAIL PROTECTED]> you wrote:
> IIRC I did something like this a few years ago and it didn't cause
> corruption, it just resulted in the package installation failing.
Yes, but it leaves them a bit confused (selected but uninstalled). It is
worse if you mount /var noexec.
Greetings
Ber
In article <[EMAIL PROTECTED]> you wrote:
> The immutable bit can be removed from a file on a running system. I just
> confirmed this on a box to make sure recent kernels hadn't changed this
> behaviour.
Depends on capabilities settings. Capabilities control must be in effect for
that. Older kern
On Thu, 9 Oct 2003, Ted Cabeen wrote:
> I agree. If you are looking for this kind of security, your best bet
> is to set the immutable bit on all of your system files. That will
> ensure that only a reboot in single user mode will allow these files
> to be changed. (Make sure you set immutable
On Thu, 9 Oct 2003, Bernhard R. Link wrote:
> security one gets by this is that this way /usr has no chance to
> go corrupt when de power supply fails and less possible corruption
Well, no chance from software related issues (files not writing properly,
etc) but an electrical surge could still do
On Thu, 9 Oct 2003, Ted Cabeen wrote:
> I agree. If you are looking for this kind of security, your best bet
> is to set the immutable bit on all of your system files. That will
> ensure that only a reboot in single user mode will allow these files
> to be changed. (Make sure you set immutable
On Thu, 9 Oct 2003, Bernhard R. Link wrote:
> security one gets by this is that this way /usr has no chance to
> go corrupt when de power supply fails and less possible corruption
Well, no chance from software related issues (files not writing properly,
etc) but an electrical surge could still do
On Fri, Oct 10, 2003 at 01:22:48PM +1300, Steve Wray wrote:
> Getting rid of root kits?
>
> Recently I've been thinking about this sort of thing as part of a
> project for work.
>
> The answer we came up with was to update boxes by rsync
> with --delete
>
Yep, that's what I do. NFS floppy boot
On Fri, Oct 10, 2003 at 01:22:48PM +1300, Steve Wray wrote:
> Getting rid of root kits?
>
> Recently I've been thinking about this sort of thing as part of a
> project for work.
>
> The answer we came up with was to update boxes by rsync
> with --delete
>
Yep, that's what I do. NFS floppy boot
10 matches
Mail list logo