LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-08-2007, 09:06 AM   #16
Tux-Slack
Member
 
Registered: Nov 2006
Location: Slovenia
Distribution: Slackware 13.37
Posts: 511

Original Poster
Rep: Reputation: 37

yes i'm using slackware distro
but not 10.2 as the profile says
i have upgraded to slack 11 a few month ago and still haven't changed that in the profile
and the link in the sig is invalid because i haven't reinstalled php sysinfo and i don't think i will install it either

about the commercial and non-comercial, tripwire and aide
i would use the one that is better
no mather if i have to pay for somethig or not
as long as i'm happy and my clients on my server are happy
and if my ISP sends me a (huge) bill for abusing...i think its better to pay for better software
although i have installed aide allready but haven't configured it yet, didn't have the time for that yet

i have also looked into rkdet (i think it was this one)
anyway, this software detects when a user tries to install a rkit
logs is, mails it and halts the system
all good and everything but i don't want it to halt
i would like to reboot the machine and add the IP to hosts.deny
OR
disconnect the user and add it's IP to hosts.deny
because the machine is phisicaly inaccessible
not that rkit get's installed everyday on a system
but there are times when i can't access the server phisicaly for a few months

also i have a question about removing roots password
i have added my user account and my fellow admins account to sudoers
and deleted roots password like this:
opened up /etc/shadow
first it looked like this:
root:$23fhrh/435fdg56g4335:some_number:::
next user
...
then i changed this file to look liek this:
root:*:some_number:::
is this a smart move
or would it be smarter to replace that star(*) with a ! so it would be like this:
root:!:some_number:::
?
or would the smartest move be to add a roots password in random chars and numbers?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Vmware guest awilisch Linux - Software 1 01-24-2005 08:35 PM
Guest matt3333 Slackware 3 12-22-2003 11:15 AM
Can't connect to Guest OS grifta Linux - Networking 1 07-26-2003 11:09 PM
Guest OS ZoZo Linux - General 1 09-25-2002 06:40 PM
can only samba as a guest matt Linux - Networking 5 09-07-2001 02:56 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:11 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration