Home | Content | Search | Navigation | Indexes
 

Mailinglist Archive: opensuse (1425 mails)

< Previous Next >
Re: [opensuse] Re: Interactive Firewall Needed
  • From: "Carlos E. R." <robin.listas@xxxxxxxxxxxxxx>
  • Date: Fri, 8 May 2009 00:32:13 +0200 (CEST)
  • Message-id: <alpine.LSU.2.00.0905080027050.2211@xxxxxxxxxxxxxxxx>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



On Wednesday, 2009-05-06 at 23:06 -0000, Jim Henderson wrote:

If the checksum changes, you alert the user that the checksum changed.

there is a linux application to do so. I don't remember the name, but I
tested it some time ago.

tripwire? I don't see it in webpin, though.

I'm thinking of a kernel feature to trigger events based on file
modification. I don't think it's tripwire, when I'm done working today
I'll see if I can find it.

No, tripwire doesn't do that. In fact, I can't think of any app doing that. Checking on execution of that file, or checking fulltime for a write access?

Now that I think, it is possible to use apparmour to trigger on any attempt to write to a certain file, the trick was posted here (I'll look it up tomorrow if anybody is interested). But I don't think it could be used to monitor many files.


and if you want you can prevent users from running anything from they
home - or see the security parameters on YaST

How, mounting /home noexec, perhaps?

That's a pretty big sledgehammer. Proposed solution would be a bit more
nuanced....

Like...?

- -- Cheers,
Carlos E. R.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)

iEYEARECAAYFAkoDYW8ACgkQtTMYHG2NR9Vt/wCdGoAO4HP5TYwacBS6MWK98usR
I4YAoIBUse8k6qiFa49loMTh6K7g1baA
=7rSa
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

< Previous Next >
This Thread
Follow Ups