Re: bad login tracking

To: thomas lakofski <thomas@88.net>
Cc: Carl Mummert <mummert@cs.wcu.edu>, debian-user@lists.debian.org, mummert@murphy.debian.org
Subject: Re: bad login tracking
From: Carl Mummert <mummert@cs.wcu.edu>
Date: Tue, 27 Jul 1999 17:53:22 -0400
Message-id: <"6ufk3C.A.T6G.0sin3"@murphy>
In-reply-to: Message from thomas lakofski <thomas@88.net> of "Tue, 27 Jul 1999 21:34:49 -0000." <[🔎] Pine.LNX.3.96.990727213305.16790A-100000@oi>

>> Any user can run lastb.
>
>you can fix that with chmod o= /var/log/btmp*

When the file is rotated, the old permissions will be restored, so you
would have to fix the cron entry as well.

I agree that it is possible to prevent others from running lastb, but
it is easy to do it incorrectly, and you will have the dpkg system
working against you (for example, the next upgrade will fix the changed
cron entry).  It is easier to accept that lastb isn't secure.

tcp-wrappers gives more logging than mosdt people need, and solid
passwords can prevent others from loggin in.

Of course, the truly secuire fix is to disable telnet and rlogin, enable
ssh, and to turn off password authentication (require RSA keypairs). 

Carl

Reply to:

References:
- Re: bad login tracking
  - From: thomas lakofski <thomas@88.net>

Prev by Date: Re: fetchmail / sendmail problem
Next by Date: su/PATH & newgrp/HOME
Previous by thread: Re: bad login tracking
Next by thread: Re: bad login tracking
Index(es):
- Date
- Thread