[rescue] SGI fw_sshd and security
Kevin
kevin at mpcf.com
Mon Mar 8 17:03:42 CST 2004
Some SCSI drives do have write protect jumpers, but they are few
and far between. I do really wish that that was an accepted
standard.
/KRM
On Mon, 8 Mar 2004 14:32:40 -0500
Dave McGuire <mcguire at neurotica.com> wrote:
> On Mar 8, 2004, at 12:45 PM, Kevin Loch wrote:
> >>> Your Tripwire database, executable binary and tw.config
> >file are>> supposed to be located on read only media. An
> >attacker could>> edit the cron process, that runs Tripwire
> >automatically, to run a>> hacked version, but that would still
> >fail with manual audits>> which should be done at least once a
> >week.> Yes, supposed to be...but who actually does that?
> >
> > People who don't spend enough time auditing their firewall
> > config.
>
> Yes. :) But it's not a perfect world. I remember my
> biggest
> complaint about moving to SCSI disks from SMD and IPI about
> eleven years ago: no write-protect buttons.
>
> -Dave
>
> --
> Dave McGuire "My tummy hurts now, but my
> soul Cape Coral, FL feels a little better."
> -Ed
> _______________________________________________
> rescue list - http://www.sunhelp.org/mailman/listinfo/rescue
--
keyserver: http://pgp.mit.edu/
More information about the rescue
mailing list