Re: securing debian

To: Alain Toussaint <alaint@boisfrancs.qc.ca>
Cc: Debian User List <debian-user@lists.debian.org>
Subject: Re: securing debian
From: Ben Pfaff <pfaffben@pilot.msu.edu>
Date: 25 Apr 1998 20:26:04 -0400
Message-id: <87lnstjun7.fsf@pfaffben.user.msu.edu>
Reply-to: pfaffben@pilot.msu.edu
In-reply-to: Alain Toussaint's message of Sat, 25 Apr 1998 20:19:00 -0400 (EDT)
References: <Pine.LNX.3.96.980425201058.321A-100000@main>

   i took a look at some article and manpages for securing my system and i
   want to do 2 things to secure my system,i already disalowed telnet access
   but there's 2 place i need to secure thing up,it's in the file securetty,i
   want to remove login as root (i'll only need to use su when i need root
   access) and i want to take care of the permission of my different ppp
   config files so they are only viewable when root and by the ppp dialer
   (i'm using pon only,i dont have a ppp util for X nor i need to have one)
   also,does it's possible to do the same thing with the config files for
   mail (i'm using smail and fetchmail but i only need to take care of the
   .fetchmailrc file)

You might consider installing the `sudo' package and using that for
all your root access.  If you do that, then you can change the
encrypted root password to * in /etc/shadow (you *are* using shadow
passwords, I hope) and thus it becomes impossible to log in as root.

Ben


--
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: securing debian
  - From: Alain Toussaint <alaint@boisfrancs.qc.ca>
- Re: securing debian
  - From: Alain Toussaint <alaint@boisfrancs.qc.ca>
- Re: securing debian
  - From: hospedales@wow.net

References:
- securing debian
  - From: Alain Toussaint <alaint@boisfrancs.qc.ca>

Prev by Date: securing debian
Next by Date: Re: securing debian
Previous by thread: securing debian
Next by thread: Re: securing debian
Index(es):
- Date
- Thread