Securing Debian Manual: 4.16.2 The ext2 filesystem specific attributes (chattr/lsattr)

To: debian-user <debian-user@lists.debian.org>
Subject: Securing Debian Manual: 4.16.2 The ext2 filesystem specific attributes (chattr/lsattr)
From: Stayvoid <stayvoid@gmail.com>
Date: Thu, 8 Mar 2012 17:22:35 +0300
Message-id: <[🔎] CAK5fS_H0gnYbx1NKx3ReTN-QY8bjx0WoKp2inRgVzJVyMDaLLg@mail.gmail.com>

Hello.

"In addition to the usual Unix permissions, the ext2 and ext3
filesystems offer a set of specific attributes that give you more
control over the files on your system."
What about ext4 and others?

"Now that the capability has been removed from the system, an intruder
cannot change any attribute on the protected files, and thus cannot
change or remove the files. If he forces the machine to reboot (which
is the only way to restore the capabilities bounding set), it will
easily be detected, and the capability will be removed again as soon
as the system restarts anyway. The only way to change a protected file
would be to boot the system in single-user mode or using another
bootdisk, two operations that require physical access to the machine
!"
What about the remote connections?

http://www.debian.org/doc/manuals/securing-debian-howto/ch4.en.html

Cheers

Reply to:

Prev by Date: Re: Bug in both update manager and in apt-get
Next by Date: Securing Debian Manual: 4.17.2 Configuring syncookies
Previous by thread: Re: Securing Debian Manual: 4.12.2 Configuring where alerts are sent
Next by thread: Securing Debian Manual: 4.17.2 Configuring syncookies
Index(es):
- Date
- Thread