[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] eggdrop and monitoring

Subject: Re: [cobalt-security] eggdrop and monitoring
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Date: Thu, 17 Apr 2003 04:13:57 +0200
Organization: SOLARSPEED.NET
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Eddy,

> Better yet, look into mounting /home with the "noexec" option.

I imagine that this can easily backfire. Webmail and Neomail are usually 
installed in /home/ and the same is true for other popular third party 
software. Some of us also relocated files from the [/]-partition to [/home] 
to free up space.

But even on a stock RaQ this would cause CGI related problems as the 
executable bit on scripts would no longer work. Some binaries related to 
Interbase in /home/opt/ would throw a fit as well. 

Aside from that kind of collateral damage it can be a good security measure if 
used with the proper care and caution.

-- 

With best regards,

Michael Stauber

Follow-Ups:
- Re: [cobalt-security] eggdrop and monitoring
  - From: E.B. Dreger

References:
- Re: [cobalt-security] eggdrop and monitoring
  - From: E.B. Dreger

Prev by Date: Re: [cobalt-security] eggdrop and monitoring
Next by Date: Re: [cobalt-security] eggdrop and monitoring
Previous by thread: Re: [cobalt-security] eggdrop and monitoring
Next by thread: Re: [cobalt-security] eggdrop and monitoring

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index