Re: chattr as a security precaution
From: cmic (cmic@caramail.com)Date: 01/24/02
- Next message: Roger Marquis: "Re: Microsoft finally acknowledges the security drumbeats"
- Previous message: those who know me have no need of my name: "Re: chattr as a security precaution"
- In reply to: gaius.petronius: "chattr as a security precaution"
- Next in thread: ERA: "Re: chattr as a security precaution"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: cmic@caramail.com (cmic) Date: 24 Jan 2002 08:13:54 -0800
Hi.
the chattr is not sun unusefull. You can chattr /bin and then rm
/bin/chattr (lock the files and eatthe key !!) Or compile a fake
chattr command wich does ...nothing...
Imagination.
But you are right. This just a kludge. Not serious security.
------------------
michel Marcon
SysaAdmin UNIX and WNT
CETU
rut@linuxmail.org (gaius.petronius) wrote in message news:<188cd7b2.0201231831.30d4893c@posting.google.com>...
> What is the advantage or disadvantage of running a chattr -R +i
> (recursively changing the stat of files to 'immutable' [cannot be
> modified or removed]) on /bin /usr /sbin?
>
> How helpful might this be against an attacker?
>
> my opinion is that it doesn't help much at all once he obtains root
> EUID.
- Next message: Roger Marquis: "Re: Microsoft finally acknowledges the security drumbeats"
- Previous message: those who know me have no need of my name: "Re: chattr as a security precaution"
- In reply to: gaius.petronius: "chattr as a security precaution"
- Next in thread: ERA: "Re: chattr as a security precaution"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
