[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] eggdrop and monitoring
- Subject: Re: [cobalt-security] eggdrop and monitoring
- From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
- Date: Thu, 17 Apr 2003 04:13:57 +0200
- Organization: SOLARSPEED.NET
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi Eddy,
> Better yet, look into mounting /home with the "noexec" option.
I imagine that this can easily backfire. Webmail and Neomail are usually
installed in /home/ and the same is true for other popular third party
software. Some of us also relocated files from the [/]-partition to [/home]
to free up space.
But even on a stock RaQ this would cause CGI related problems as the
executable bit on scripts would no longer work. Some binaries related to
Interbase in /home/opt/ would throw a fit as well.
Aside from that kind of collateral damage it can be a good security measure if
used with the proper care and caution.
--
With best regards,
Michael Stauber