testing owner files and integrity

To: debian-security@lists.debian.org
Subject: testing owner files and integrity
From: Samu <samu@mclink.it>
Date: Mon, 30 Apr 2001 16:53:44 +0200
Message-id: <20010430165344.A4932@linuxasylum.net>
Mail-followup-to: debian-security@lists.debian.org

last night i did a chown -R nobody. / as root.
i tried to establish the right owner of all files, so i start to check 
how to do that under debian ( i remembered it was possible under rh) and....
surprise nothing.
so i started to manually changin owner of my files ( with the help of another
machine debian too).

it would be good for dpkg packages to have a list of all permission and owner
of every file you are installing so it's easier to check this kind of mistakes 
( also it can be helpful to detect trojan  horse ) .

i mean something like aide but implemented on the structure of .deb packages,
would help sysadm to keep the system as debian suggest.
obviously there are some problems about "customization": e.g. someone wants 
tcpdump suid root to permit all his user to watch traffic, so it must be
something which can be suppressed (not like on rh ) but the default configuration should keep the owner/permission as debian suggest .

what do you think about it ?


thanks 
Samuele 


-- 
Samuele Tonon  <samu@mclink.it>
Undergraduate Student  of  Computer Science at  University of Bologna, Italy    
System administrator at Computer Science Lab's, University of Bologna, Italy  
Founder & Member of A.A.H.T.
UIN 3155609 
          	Acid -- better living through chemistry.
			       Timothy Leary

Reply to:

Follow-Ups:
- Re: testing owner files and integrity
  - From: Bryan Andersen <bryan@visi.com>
- RE: testing owner files and integrity
  - From: "smoky" <smoky@secsi.net>

Prev by Date: Re: writing files securely
Next by Date: Re: testing owner files and integrity
Previous by thread: Re: writing files securely
Next by thread: Re: testing owner files and integrity
Index(es):
- Date
- Thread