Re: What to do about checksecurity

To: debian-devel@lists.debian.org
Subject: Re: What to do about checksecurity
From: Steve Greenland <stevegr@master.debian.org>
Date: Sun, 26 Apr 1998 14:28:41 -0500
Message-id: <[🔎] 19980426142841.58651@neuromancer.dmccorp.com>
Reply-to: Steve Greenland <stevegr@master.debian.org>
In-reply-to: <19980319220329.18978@neuromancer.dmccorp.com>; from Steve Greenland on Thu, Mar 19, 1998 at 10:03:29PM -0600
References: <199803182139.NAA04911@spasm.stanford.edu> <ycqbtv3s1bd.fsf@portB05.Generation.NET> <19980319220329.18978@neuromancer.dmccorp.com>

On 19-Mar-98, 22:03 (CST), Steve Greenland <stevegr@master.debian.org> wrote:
> On 18-Mar-98, 23:21 (CST), "Gregory S. Stark" <gsstark@mit.edu> wrote:
> > 
> > For NFS and AFS, why not just log a message listing volumes mounted without
> > nosetuid and nodev. They're security issues regardless of what files happen to
> > exist on them and they should be audited by the server, not by every client
> > that happens to have them mounted. 
> 
> You know, that's the best general solution I've heard yet, and I'm
> embarassed not to have thought of it. I think I'll do something like
> this for the next release of cron.

I've put this into -45, which I'm uploading today. You can get the
old behaviour by editing checksecurity.conf, and uncommenting the
indicated line.

Steve


--
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Prev by Date: Re: policy suggestion (seeking discussion)
Next by Date: Re: 21164 must be fixed before 2.0.34 comes out!
Previous by thread: Re: Licensing (OFF-TOPIC)
Next by thread: Out of town for a week.
Index(es):
- Date
- Thread