Re: Tripwire in bin-directory?

To: "debian-security@lists.debian.org" <debian-security@lists.debian.org>
Subject: Re: Tripwire in bin-directory?
From: Thomas Guettler <guettli@interface-business.de>
Date: Wed, 24 May 2000 15:10:48 +0200
Message-id: <[🔎] 392BD4D8.A9EC7852@interface-business.de>
References: <[🔎] Pine.LNX.4.21.0005241334550.599-100000@zk201.girton.cam.ac.uk>

Zak Kipling wrote:
> 
> On Wed, 24 May 2000, Thomas Guettler wrote:
> 
> > Isn't it a security risk, that there
> > is a shellscript in bin that executes /usr/lib/tripwire.
> > If someone breaks into my system, he/she could
> > change the file in bin to something that always
> > reports that nothing was changed!
> 
> If someone breaks into your system, he/she could change /usr/lib/tripwire
> itself... isn't this just as much of a problem, except in the unlikely
> event that /usr/lib is hardware write-protected while /bin is not.
> 

Thank you for your quick reply.
this is not unlikely, that's the way it should be according
to the READMEs.
With ztripwire the database and the binaries fit onto a 1.44MB floppy,
which
is hardware write-protected mounted on /usr/lib/tripwire.
I think that this i quite save, because the binaries and the databases
can't be changed remotely.

-- 
Thomas Guettler <guettli@interface-business.de>
http://www.interface-business.de

Reply to:

Follow-Ups:
- Re: Tripwire in bin-directory?
  - From: Michael Meskes <meskes@debian.org>

References:
- Re: Tripwire in bin-directory?
  - From: Zak Kipling <zk201@cam.ac.uk>

Prev by Date: Re: Tripwire in bin-directory?
Next by Date: Re: Tripwire in bin-directory?
Previous by thread: Re: Tripwire in bin-directory?
Next by thread: Re: Tripwire in bin-directory?
Index(es):
- Date
- Thread