[oclug] In house security
Chris Church
linuxinfo at sgl.com
Tue Aug 14 14:41:22 EDT 2001
Well its a small shop with small resources. One box does everything! Not a good
thing? How many machines in what configuration would be adequate?
Chris.
bbarnett at L8R.net wrote:
> Well, yeah... no one should have access to that box except for the sysadmins.
>
> Why do other people have accounts on that box anyhow?
>
> On 13-Aug-2001 Chris Church wrote:
> > Greetings all,
> >
> > I am considering increasing the security on my gateway which is linux
> > box and I wanted to restrict access to commands on that system from
> > people on our internal network. Can I change all the files in /sbin and
> > /etc to be
> > read only by root or change the permissions from 755 to 754 or 750. I
> > have found evidence of people just poking around the system for reasons
> > of their own and I am not sure what a secure gateway/server should look
> > like to the inside user.
> >
> > If I can do this with adversely effecting the systems operations then
> > what other directories can I change permissions on. Also is there a way
> > of restricting access of just one individual?
> >
> >
>
> ---
>
> Dynamic Hosting
> HTTP://www.L8R.net/
> "We Provide Static Hostnames for Dynamic IP's"
> _______________________________________________
> oclug mailing list
> oclug at lists.oclug.on.ca
> http://www.oclug.on.ca/mailman/listinfo/oclug
More information about the OCLUG
mailing list