LinuxQuestions.org - Blog Entries

sshd chroot jails based on hostname and SELinux

Posted 04-01-2013 at 10:46 AM by sag47
Updated 04-01-2013 at 10:51 AM by sag47

Tags chroot, jenkins, security, selinux, sshd

Why chroot jails based on host name?
If you don't care about the background info just jump to Setting up sshd chroot jail and SELinux.

So I have started configuring automated deployments through my organization using a continuous integration server called Jenkins. I'll post more on Jenkins regularly so that eventually you can have a series of posts which wrap up into a nice and secure howto for Jenkins. So here's why I want chroot jails based on host names.

...

sag47

Senior Member

Posted in SELinux Adventures

Views 8753 Comments 0 sag47 is offline

Simple ClamAV sig for /lib64/libkeyutils.so.1.9 contents

Posted 02-16-2013 at 02:26 PM by unSpawn
Updated 02-17-2013 at 07:03 AM by unSpawn

Tags cve-2013-0871, libkeyutils.so.1.9, rkh, sshd, webhostingtalk

Wrt SSHD Rootkit Rolling around.

*I updated RKH in CVS but detection wasn't added yet to ClamAV, Securiteinfo or R-fx MLD:

Code:

]$ clamscan --official-db-only=no -d ./securiteinfoelf.hdb -d ./securiteinfosh.hdb -d ./rfxn.hdb -d ./rfxn.ndb -d ./RKH_libkeyutils.ldb -r --infected -r $PWD
path01/libkeyutils.so.1.9: RKH_libkeyutils.so.1.9.UNOFFICIAL FOUND
path02/libkeyutils.so.1.9: RKH_libkeyutils.so.1.9.UNOFFICIAL FOUND
path03/innucuoustarball.tar.bz2: RKH_libkeyutils.so.1.9.UNOFFICIAL

...

Attached Files

RKH_libkeyutils.ldb.txt (195 Bytes, 14 views)

unSpawn

Moderator

Posted in Uncategorized

Views 4089 Comments 0 unSpawn is offline

Total Blogs

2,189

Total Entries

8,276

Entries in Last 24 Hours