[olug] lsattr
mesc
mescie at home.com
Sat Sep 16 16:10:29 UTC 2000
As a newbie looking to make my box more secure I hafta ask:) What's the
command to make a file immutable and can anyone please explain what an
immutable file is?
Thank you,Gary Martin
Mike McNally wrote:
> So far the only security info I have found re immutable files indicates
> that the archival logfiles must be immutable or your security is very
> weak. So it would appear that by responding to Brian's inquiry I have
> let all the script kiddies on this list know that my logfiles are not
> immutable.
>
> So if my system were more secure the command, that Brian suggests that I
> run, would have shown log files to be immutable... which is good, not
> bad as he implies. Further, to run the command he suggests:
> chattr -i ${AFFECTED_FILE}
> would unset the immutable bit, placed on logfiles to enhance security,
> thus reducing security. Is this the point where I should be thanking
> you Brian?
>
> mike
>
> Mike McNally wrote:
> >
> > I found 3 immutable files in the mutt/charsets dir.
>
> snip
>
> > mike
>
> snip
>
> > > On Mon, 11 Sep 2000, Brian Roberson wrote:
> > >
> > > >
> > > > I am sure someone will thank me later....
> > > >
> > > >
> > > >
> > > > lsattr -R / | grep "\-i\-"
> > > >
> > > > anything show up beside's the error's in /dev/ and /proc/ ??
> > > >
> > > >
> > > > better look deeper then!!
> > > >
> > > > `man chattr`
> > > >
> > > > or the shortway:
> > > >
> > > > chattr -i ${AFFECTED_FILE}
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: olug-unsubscribe at bstc.net
> For additional commands, e-mail: olug-help at bstc.net
---------------------------------------------------------------------
To unsubscribe, e-mail: olug-unsubscribe at bstc.net
For additional commands, e-mail: olug-help at bstc.net
More information about the OLUG
mailing list