Mark Romer wrote:
Yes, so this would already be done in openbsd.
You will soon discover that in OpenBSD, you don't have to go around the
system hardening it...
--
Mauro Rezzonico , Como, Italia
"Maybe this world is another planet's hell" - H.Huxley
Ah yes, thanks Otto !
I think I was getting confused between the named binary in /usr/sbin/ and
where the bind files are chrooted under /var/named
Yes, so this would already be done in openbsd.
thanks, Mark
On Thu, Dec 3, 2009 at 2:08 PM, Mark Romer wrote:
> Hello All,
> Sorry if it has b
On Thu, 3 Dec 2009 15:30:15 -0500, Mark Romer wrote:
> All, thanks for the responses so far.
>
> I work for the Fed and we have to setup a dns sec bind server on our
end.
> I
> was just reading some of their "advice" on setting up the server...
>
> 2. Mount BIND's chroot filesystem with the no
Ok, I am not sure if I am replying to just that user or the whole group,
when using the gmail client... anyway
All, thanks for the responses so far.
I work for the Fed and we have to setup a dns sec bind server on our end. I
was just reading some of their "advice" on setting up the server...
On Thu, Dec 03, 2009 at 03:30:15PM -0500, Mark Romer wrote:
> All, thanks for the responses so far.
>
> I work for the Fed and we have to setup a dns sec bind server on our end. I
> was just reading some of their "advice" on setting up the server...
>
> 2. Mount BIND's chroot filesystem with t
All, thanks for the responses so far.
I work for the Fed and we have to setup a dns sec bind server on our end. I
was just reading some of their "advice" on setting up the server...
2. Mount BIND's chroot filesystem with the noexec,nosuid,nodev options.
Of course all their instructions are for
On Thu, Dec 03, 2009 at 09:55:38PM +0200, Eugene Yunak wrote:
> 2009/12/3 Mark Romer :
> > Hello All,
> > Sorry if it has been asked in the past, but is it ok to mount the /usr
> > partition as nosuid?
> > What if any default programs will that break? B And also does that give me
> > any added secu
2009/12/3 Mark Romer :
> Hello All,
> Sorry if it has been asked in the past, but is it ok to mount the /usr
> partition as nosuid?
> What if any default programs will that break? B And also does that give me
> any added security benefits?
> Running 4.6 release generic i386
> thanks, Mark
"find /u
On Thu, 3 Dec 2009 14:08:29 -0500, Mark Romer wrote
> Hello All,
> Sorry if it has been asked in the past, but is it ok to mount the
> /usr partition as nosuid? What if any default programs will that
> break?
Find out for yourself. See how Set-User-ID mode and Set-Group-ID mode are
reporte
On Thu, Dec 03, 2009 at 02:08:29PM -0500, Mark Romer wrote:
> Hello All,
> Sorry if it has been asked in the past, but is it ok to mount the /usr
> partition as nosuid?
> What if any default programs will that break? And also does that give me
> any added security benefits?
> Running 4.6 release g
On Thu, Dec 03, 2009 at 02:08:29PM -0500, Mark Romer wrote:
> Hello All,
> Sorry if it has been asked in the past, but is it ok to mount the /usr
> partition as nosuid?
> What if any default programs will that break? And also does that give me
> any added security benefits?
> Running 4.6 release g
Hello All,
Sorry if it has been asked in the past, but is it ok to mount the /usr
partition as nosuid?
What if any default programs will that break? And also does that give me
any added security benefits?
Running 4.6 release generic i386
thanks, Mark
12 matches
Mail list logo
