Quote:
Originally Posted by mikeey
Security scripts *** 3.2.3, 2008.09.10.09.30 ***
|
Sure this is the most recent version?
Quote:
Originally Posted by mikeey
[pass013w] Username `X' is not using an acceptable password hash
|
See bug
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=432918 ?
Quote:
Originally Posted by mikeey
[pass015w] Login ID sshd does not have a valid shell (/usr/sbin/nologin).
|
'sshd' isn't an account that any human user should use. No valid shell is good.
Quote:
Originally Posted by mikeey
[acc006w] Login ID X's home directory (/X/X) has group `4096' write access.
|
Looks like an error separating fields ("4096" is a common value where 'stat' returns IO Blocks).
Quote:
Originally Posted by mikeey
[acc022w] Login ID X home directory (/nonexistent) is not accessible.
|
Some processes need not or should not have a home.
Quote:
Originally Posted by mikeey
[path002w] /path/to/item in root's PATH from default is not owned by root (owned by tty).
|
Lesser-privileged or unprivileged users shouldn't trick root into writing to files owned by them.
Quote:
Originally Posted by mikeey
CRON file `' is owned by crontab.
|
Looks like an error. Fixing it requires debugging.
Quote:
Originally Posted by mikeey
Found cron file for unknown user .
|
Hmm. Interesting. If listing crontab files doesn't show clues then this requires debug output to find out what happened though.
Quote:
Originally Posted by mikeey
[cron004w] Root crontab does not exist
|
If root doesn't need its own crotan that's not a problem.
Quote:
Originally Posted by mikeey
[cron005w] Use of cron is not restricted
|
See /etc/cron.{deny,allow}
Quote:
Originally Posted by mikeey
[inet003w] The port for service pop-2 is also assigned to service pop2.
|
Conflicting assignments could be fixed checking /etc/services against the file the official assigning authority (IANA?) provides.
Quote:
Originally Posted by mikeey
[init004e] `/usr/lib/tiger/systems/default/gen_mounts' is not executable (command GET_MOUNTS).
|
Seems like an error to me.
Quote:
Originally Posted by mikeey
[rootkit009a] A rootkit seems to be installed in the system INFECTED (PORTS: 31337)
|
Weak alert by chkrootkit. See its FAQ and the patch in my web log.
Quote:
Originally Posted by mikeey
[dev003w] The directory /dev/block resides in a device directory.
|
Probably too strict check, even for Debian. Doesn't seem like a problem to me.
Quote:
Originally Posted by mikeey
--FAIL-- [logf005f] Log file /var/log/wtmp permission should be 644
--FAIL-- [logf005f] Log file /var/log/btmp permission should be 600
--FAIL-- [logf005f] Log file /var/run/utmp permission should be 644
|
Depends on your distribution. Often 0664 access perms allowing other processes to write to it.
Quote:
Originally Posted by mikeey
[misc022f] The umask setting in /etc/profile is insecure
|
You didn't list it. What does it default to?
Quote:
Originally Posted by mikeey
[lin003w] The process `exim4' is listening on socket TCP (0t0 on TCP interface) is run by Debian-exim.
|
Seems like a message of the informational level to me.
Quote:
Originally Posted by mikeey
[ssh004w] The PasswordAuthentication directive in /etc/ssh/sshd_config is set to the unapproved defult value: yes.
|
See recommendations in
http://www.linuxquestions.org/questi...tempts-340366/
Quote:
Originally Posted by mikeey
--ERROR-- [init006e] `/etc/printcap' does not exist (file definition src).
--ERROR-- [init006e] `/etc/printcap' does not exist (file definition infile).
|
?
Quote:
Originally Posted by mikeey
--ERROR-- [init001e] Don't have required command NETSTAT.
|
Instal the package containing netstat?
Quote:
Originally Posted by mikeey
--ERROR-- [init004e] `/usr/lib/tiger/systems/default/getdisks' is not executable (command GETDISKS).
|
Seems like an error to me.
* BTW first thing you should know is GNU/Tiger has a switch (I always forget if it's "-e" or "-E") that intersperses warnings with explanations. I suggest you use it (or look up the codes in the explanation file) first.