Ideas on UNIX security
Michael.Young%cmu-cs-g at sri-unix.UUCP
Michael.Young%cmu-cs-g at sri-unix.UUCP
Fri Jun 24 04:52:55 AEST 1983
A reasonable thing to do when doing overnight dumps or filesystem
searches (either by cron, or by human operator) is to dump (to
a safe tape) a fast checksum of your important binaries, along with
their inode information. The inode info will detect major
differences (bad modes, sizes, owners), and the checksum will detect
even some tricky meddling. It seems that this is worthwhile every so
often just to keep an eye on which system maintainers are working
on what, and to detect strange disk errors. [Fsck makes sure blocks
are arranged right, but not that they contain the right stuff.]
Yes, it's expensive, but if you've got the time at night, it can't hurt.
Michael
More information about the Comp.unix.wizards
mailing list