Re: Solaris Security Script
From: Christoph Kaegi (kgc_at_zhwin.ch)
Date: 12/13/04
- Previous message: Harry Hoffman: "Re: Solaris Security Script"
- In reply to: xyberpix: "Solaris Security Script"
- Next in thread: Jason A Horn: "Re: Solaris Security Script"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 13 Dec 2004 11:09:30 +0100 To: focus-sun@securityfocus.com
On 10.12-10:37, xyberpix wrote:
> Hi All,
>
> I'm working on a rather large Solaris security script, could you please
> all post your idea's in here or mail me directly for things that you would
> recommend checking for.
NetBSD has a very convenient security facility that is configurable
by /etc/security.conf. You can look at the manpage at
http://www.daemon-systems.org/man/security.conf.5.html
to get an idea.
What I like the most about it is the sense of 'recognizing, what's
going on' on my systems. If any of the watched files changes, I
get a diff, so I can double check my changes the next day when the
security mail arrives.
If nothing changes, the security report is empty, if anything
changes, I get the details.
This has also the added value of getting backups of important
files, in case I do something silly with one of them and want
a working version back.
I always wanted something like this on my solaris systems.
Chris
-- ---------------------------------------------------------------------- Christoph Kaegi kgc@zhwin.ch ----------------------------------------------------------------------
- Previous message: Harry Hoffman: "Re: Solaris Security Script"
- In reply to: xyberpix: "Solaris Security Script"
- Next in thread: Jason A Horn: "Re: Solaris Security Script"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
