[index] [text page] [<<start] [<prev] [next>] [last>>]
Page 8: Bastille Configuration File
Page 8

  
  Bastille Configuration File
  $ cat /etc/Bastille/config
  # Q: Would you like to set more restrictive permissions on the administration utilities? [N]
  FilePermissions.generalperms_1_1="Y"
  # Q: Would you like to disable SUID status for mount/umount?
  FilePermissions.suidmount="Y"
  # Q: Would you like to disable SUID status for ping? [Y]
  FilePermissions.suidping="Y"
  # Q: Would you like to disable SUID status for at? [Y]
  FilePermissions.suidat="Y"
  # Q: Would you like to prohibit the clear-text r-protocols which trust IP addresses for authentication? [Y]
  AccountSecurity.protectrhost="Y"
  ...

Copyright 2003, Bri Hatch of Onsight, Inc.

Presented at ISSA Puget Sound, 2003.

Presentation created using vim and MagicPoint.