suid bit files + securing FreeBSD (new program: LockDown)
Mike Hoskins
mike at adept.org
Wed Jul 30 11:18:23 PDT 2003
On Wed, 30 Jul 2003, Socketd wrote:
> Well, LockDown only has two files (the executable and the conf file) and
> I'm gonna write it in C++, so making the C++ write a second program in a
> different language (which I don't master) is maybe a little overkill ;-)
Just as an aside, this sounds more and more like BastilleBSD. ;) If
that's the direction you're headed, you may want to play with Bastille on
a Linux bax (or vmware session) and see if you get any more ideas...
Something that essentially automates the afore mentioned checklist would
be very similar to Bastille already. (But for BSD, which I'm sure many
would find useful.)
Good luck,
-mrh
--
From: "Spam Catcher" <spam-catcher at adept.org>
To: spam-catcher at adept.org
Do NOT send email to the address listed above or
you will be added to a blacklist!
More information about the freebsd-security
mailing list