Re: How efficient is mounting /usr ro?

To: debian-security@lists.debian.org
Subject: Re: How efficient is mounting /usr ro?
From: Bernd Eckenfels <ecki@calista.eckenfels.6bone.ka-ip.net>
Date: Fri, 10 Oct 2003 04:39:57 +0200
Message-id: <[🔎] E1A7nC9-0004AT-00@calista.inka.de>
In-reply-to: <[🔎] 200310101357.38083.stevew@catalyst.net.nz>

In article <[🔎] 200310101357.38083.stevew@catalyst.net.nz> you wrote:
> Ahhh but we run scripts on the target before and after the rsync; to prep it
> up and so forth, as well as patching some things in /etc 
> (we use a diff 'n' sed|patch system for some things in etc)
> Hence, the binaries on the target that these scripts run need to
> be verified. But yes, tripwire is ultimately the right tool!
> :)

It is much better to boot the target from a trusted media, because of
possible kernel hacks. This is anyway a good thing if you can just tell your
uses to boot from network or put the CD into it to get their workplace
restored.

Greetings
Bernd
-- 
eckes privat - http://www.eckes.org/
Project Freefire - http://www.freefire.org/

Reply to:

References:
- Re: How efficient is mounting /usr ro?
  - From: Steve Wray <stevew@catalyst.net.nz>

Prev by Date: Re: How efficient is mounting /usr ro?
Next by Date: Re: How efficient is mounting /usr ro?
Previous by thread: Re: How efficient is mounting /usr ro?
Next by thread: Re: How efficient is mounting /usr ro?
Index(es):
- Date
- Thread