On Monday 17 July 2006 07:57, Mike Tibor wrote:
> Even /home can be mounted
> nodev,nosuid without problems normally. This certainly isn't anything
> new, but oddly enough it really screws with the average script kiddie.
For even more security, mount /home with noexec. While this might really
frustrate some users, on something like a mail server, it should cause *no*
problems and will frustrate script kiddies for sure if they manage to hack an
account with a weak password.
j
-- Joshua Kugler Lead System Admin -- Senior Programmer http://www.eeinternet.com PGP Key: http://pgp.mit.edu/ ID 0xDB26D7CE PO Box 80086 -- Fairbanks, AK 99708 -- Ph: 907-456-5581 Fax: 907-456-3111 --------- To unsubscribe, send email to <aklug-request@aklug.org> with 'unsubscribe' in the message body.Received on Mon Jul 17 12:09:29 2006
This archive was generated by hypermail 2.1.8 : Mon Jul 17 2006 - 12:09:30 AKDT