Re: Anti-Rootkit app

---

• From: Jan Münther <jan.muenther@xxxxxxxxx>
• Date: Tue, 15 Jan 2008 01:17:57 +0100

---

Tim Clewlow schrieb:

One solution would be to have /var/log/auth.log being tailed out via a serial
port to another computer that is not accessable via a network - or have it sent
to a printer for a permanent hard-copy. It all depends on how much you really
want to do in regard to security.

A good practice is running a log host which has a cable that has only RX wires connected.

Cheers,
Jan

--
Jan Muenther, CTO Security, n.runs AG

_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"

---

• References:
  • Re: Anti-Rootkit app
    • From: Tim Clewlow

• Prev by Date: Re: Anti-Rootkit app
• Next by Date: Re: FreeBSD Security Advisory FreeBSD-SA-08:02.libc
• Previous by thread: Re: Anti-Rootkit app
• Next by thread: Re: Anti-Rootkit app
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > FreeBSD-Security  > 2008-01