--- Bigby Findrake <[EMAIL PROTECTED]> wrote:
> On Wed, 6 Sep 2006, Travis H. wrote:
> > Wouldn't it be better to detect /and/ prevent an attempt to change the
> > system binaries?
>
> That's how I interpret that passage from the handbook - that you should
> detect *and* prevent. I'm not clear o
On Wed, 6 Sep 2006, Travis H. wrote:
``You do not want to overbuild your security or you will interfere
with the detection side, and detection is one of the single most
important aspects of any security mechanism. For example, it makes
little sense to set the schg flag (see chflags(1)) on every
On 2006-09-07 13:27, "Travis H." <[EMAIL PROTECTED]> wrote:
>On 9/7/06, Dag-Erling Sm?rgrav <[EMAIL PROTECTED]> wrote:
>>Uh? Since when do we have crap like that in the handbook? It should
>>be removed with extreme prejudice.
>
> I'm glad I'm not the only one who feels this way :-)
This makes t
