Hello Ryan, yes - I have looked at the scripts :-) What I want is that the scrips does exactly what it is supposed to do. Nothing more and nothing less. The functionality is predefined - and yes, it perfectly fits into my security strategy; as one tiny part of course. Where's the problem ? Why shouldn't we use the scripts if they're there AND if we know what they are doing... Bye, Gunther -----Ursprüngliche Nachricht----- Von: Ryan Swenson [mailto:Ryan.Swenson@togethersoft.com] Gesendet: Donnerstag, 2. Mai 2002 19:32 An: Gunther Stammwitz; suse-security@suse.com Cc: Johan Stäring Betreff: RE: [suse-security] SUSE 8.0: IS Harden-SuSE supported ?? uh have you ever just looked at the scripts ? so many people ask SuSEfirewall1&2, and Harden_SUSE questions yet they are only scripts making practice of what any security conscious going person if within a production environment should already know. I would not want my network protected by administrators that must rely on scripts without knowing the principles behind the script in that they are mostly easy to learn and thus implement. You can modify it or take out of context things you obviuosly know will work. Gruesse/Hadjo Taag/Regards, Ryan S. -----Original Message----- From: Gunther Stammwitz [mailto:gstammw@gmx.net] Sent: Thursday, May 02, 2002 1:15 PM To: suse-security@suse.com Cc: Johan Stäring Subject: AW: [suse-security] SUSE 8.0: IS Harden-SuSE supported ?? Hello Johan, thanks for your reply, but just TRYING is _NOT_ an option for me. We're using linux in productive enviorments. Errors mustn't happen. Maybe Marc can tell us if we can use harden_use together with SuSE 8.0. Bye, Gunther -----Ursprüngliche Nachricht----- Von: Johan Stäring [mailto:js@fy.chalmers.se] Gesendet: Donnerstag, 2. Mai 2002 15:06 An: Gunther Stammwitz Cc: suse-security@suse.com; marc@suse.de Betreff: Re: [suse-security] SUSE 8.0: IS Harden-SuSE supported ?? On Thu, 2 May 2002, Gunther Stammwitz wrote: :can I use harden_suse with SuSE-8.0 ?? :I'm askin because the latest version of Harden SuSE is v3.5 from the 12th :June 2001. :This is definitive BEFORE SuSE 8.0 has been released. Why not try instead of ask? :) Change the line $debug = 0 to $debug = 1 in the harden_suse script and execute it. Look for error messages and look through the output files that in debug mode ends up in a directory named something similar to /tmp/.harden_suse.<pid> If nothing seems to break, the script works. /Johan, without a SuSE 8.0-machine to try on -- ================================================================ || js@fy.chalmers.se || Johan Stäring || +46-(0)70-672 79 01 || || ICQ#: 7290407 || http://www.fy.chalmers.se/~js || ================================================================ -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here