aboutsummaryrefslogtreecommitdiffstats
path: root/conf
diff options
context:
space:
mode:
Diffstat (limited to 'conf')
-rw-r--r--conf/perm.066
-rw-r--r--conf/perm.166
-rw-r--r--conf/perm.266
-rw-r--r--conf/perm.366
-rw-r--r--conf/perm.466
-rw-r--r--conf/perm.567
-rw-r--r--conf/server.46
-rw-r--r--conf/server.56
8 files changed, 409 insertions, 0 deletions
diff --git a/conf/perm.0 b/conf/perm.0
new file mode 100644
index 0000000..9ade3c2
--- /dev/null
+++ b/conf/perm.0
@@ -0,0 +1,66 @@
+# Welcome in Level 1
+###
+/bin/ root.root 755
+/boot/ root.root 755
+/dev/ root.root 755
+/dev/audio* root.audio 660
+/dev/dsp* root.audio 660
+/etc/ root.root 755
+/etc/conf.modules root.root 644
+/etc/cron.daily/ root.root 755
+/etc/cron.hourly/ root.root 755
+/etc/cron.monthly/ root.root 755
+/etc/cron.weekly/ root.root 755
+/etc/crontab root.root 644
+/etc/dhcpcd/ root.root 755
+/etc/dhcpcd/* root.root 644
+/etc/esd.conf root.root 644
+/etc/ftpaccess root.root 644
+/etc/ftpconversions root.root 644
+/etc/ftpgroups root.root 644
+/etc/ftphosts root.root 644
+/etc/ftpusers root.root 644
+/etc/gettydefs root.root 644
+/etc/hosts.allow root.root 644
+/etc/hosts.deny root.root 644
+/etc/hosts.equiv root.root 644
+/etc/inetd.conf root.root 644
+/etc/init.d/ root.root 755
+/etc/rc.d/init.d/syslog root.root 744
+/etc/inittab root.root 644
+/etc/ld.so.conf root.root 644
+/etc/lilo.conf root.root 644
+/etc/modules.conf root.root 644
+/etc/motd root.root 644
+/etc/printcap root.root 644
+/etc/profile root.root 644
+/etc/rc.d/ root.root 755
+/etc/securetty root.root 644
+/etc/sendmail.cf root.root 644
+/etc/shutdown.allow root.root 644
+/etc/ssh_config root.root 644
+/etc/ssh_host_key root.root 644
+/etc/ssh_host_key.pub root.root 644
+/etc/sshd_config root.root 644
+/etc/syslog.conf root.root 644
+/etc/updatedb.conf root.root 644
+/home/ root.root 755
+/home/* current 755
+/lib/ root.root 755
+/mnt/ root.root 755
+/root/ root.root 755
+/sbin/ root.root 755
+/tmp/ root.root 1777
+/usr/ root.root 755
+/usr/* root.root 755
+/usr/X11R6/ root.root 755
+/usr/bin/ root.root 755
+/usr/bin/* root.root 755
+/usr/sbin/ root.root 755
+/usr/sbin/* root.root 755
+/var/ root.root 755
+/var/log/ root.root 755
+/var/log/* root.adm 644
+/var/log/security/ root.root 700
+/var/log/security/* root.root 600
+/var/spool/mail/ root.mail 771
diff --git a/conf/perm.1 b/conf/perm.1
new file mode 100644
index 0000000..8fc7d12
--- /dev/null
+++ b/conf/perm.1
@@ -0,0 +1,66 @@
+# Welcome in Level 1
+###
+/bin/ root.root 755
+/boot/ root.root 755
+/dev/ root.root 755
+/dev/audio* root.audio 660
+/dev/dsp* root.audio 660
+/etc/ root.root 755
+/etc/conf.modules root.root 644
+/etc/cron.daily/ root.root 755
+/etc/cron.hourly/ root.root 755
+/etc/cron.monthly/ root.root 755
+/etc/cron.weekly/ root.root 755
+/etc/crontab root.root 644
+/etc/dhcpcd/ root.root 755
+/etc/dhcpcd/* root.root 644
+/etc/esd.conf root.root 644
+/etc/ftpaccess root.root 644
+/etc/ftpconversions root.root 644
+/etc/ftpgroups root.root 644
+/etc/ftphosts root.root 644
+/etc/ftpusers root.root 644
+/etc/gettydefs root.root 644
+/etc/hosts.allow root.root 644
+/etc/hosts.deny root.root 644
+/etc/hosts.equiv root.root 644
+/etc/inetd.conf root.root 644
+/etc/init.d/ root.root 755
+/etc/rc.d/init.d/syslog root.root 744
+/etc/inittab root.root 644
+/etc/ld.so.conf root.root 644
+/etc/lilo.conf root.root 644
+/etc/modules.conf root.root 644
+/etc/motd root.root 644
+/etc/printcap root.root 644
+/etc/profile root.root 644
+/etc/rc.d/ root.root 755
+/etc/securetty root.root 644
+/etc/sendmail.cf root.root 644
+/etc/shutdown.allow root.root 644
+/etc/ssh_config root.root 644
+/etc/ssh_host_key root.root 644
+/etc/ssh_host_key.pub root.root 644
+/etc/sshd_config root.root 644
+/etc/syslog.conf root.root 644
+/etc/updatedb.conf root.root 644
+/home/ root.root 755
+/home/* current 755
+/lib/ root.root 755
+/mnt/ root.root 755
+/root/ root.root 755
+/sbin/ root.root 755
+/tmp/ root.root 1777
+/usr/ root.root 755
+/usr/* root.root 755
+/usr/X11R6/ root.root 755
+/usr/bin/ root.root 755
+/usr/bin/* root.root 755
+/usr/sbin/ root.root 755
+/usr/sbin/* root.root 755
+/var/ root.root 755
+/var/log/ root.root 755
+/var/log/* root.adm 644
+/var/log/security/ root.root 700
+/var/log/security/* root.root 600
+/var/spool/mail/ root.mail 2775
diff --git a/conf/perm.2 b/conf/perm.2
new file mode 100644
index 0000000..c6a3d41
--- /dev/null
+++ b/conf/perm.2
@@ -0,0 +1,66 @@
+# Welcome in Level 2
+###
+/bin/ root.root 755
+/boot/ root.root 755
+/dev/ root.root 755
+/dev/audio* root.audio 660
+/dev/dsp* root.audio 660
+/etc/ root.root 755
+/etc/conf.modules root.root 644
+/etc/cron.daily/ root.root 755
+/etc/cron.hourly/ root.root 755
+/etc/cron.monthly/ root.root 755
+/etc/cron.weekly/ root.root 755
+/etc/crontab root.root 644
+/etc/dhcpcd/ root.root 755
+/etc/dhcpcd/* root.root 644
+/etc/esd.conf root.root 644
+/etc/ftpaccess root.root 644
+/etc/ftpconversions root.root 644
+/etc/ftpgroups root.root 644
+/etc/ftphosts root.root 644
+/etc/ftpusers root.root 644
+/etc/gettydefs root.root 644
+/etc/hosts.allow root.root 644
+/etc/hosts.deny root.root 644
+/etc/hosts.equiv root.root 644
+/etc/inetd.conf root.root 644
+/etc/init.d/ root.root 755
+/etc/rc.d/init.d/syslog root.root 744
+/etc/inittab root.root 644
+/etc/ld.so.conf root.root 644
+/etc/lilo.conf root.root 644
+/etc/modules.conf root.root 644
+/etc/motd root.root 644
+/etc/printcap root.root 644
+/etc/profile root.root 644
+/etc/rc.d/ root.root 755
+/etc/securetty root.root 644
+/etc/sendmail.cf root.root 644
+/etc/shutdown.allow root.root 644
+/etc/ssh_config root.root 644
+/etc/ssh_host_key root.root 644
+/etc/ssh_host_key.pub root.root 644
+/etc/sshd_config root.root 644
+/etc/syslog.conf root.root 644
+/etc/updatedb.conf root.root 644
+/home/ root.root 755
+/home/* current 755
+/lib/ root.root 755
+/mnt/ root.root 755
+/root/ root.root 700
+/sbin/ root.root 755
+/tmp/ root.root 1777
+/usr/ root.root 755
+/usr/* root.root 755
+/usr/X11R6/ root.root 755
+/usr/bin/ root.root 755
+/usr/bin/* root.root 755
+/usr/sbin/ root.root 755
+/usr/sbin/* root.root 755
+/var/ root.root 755
+/var/log/ root.root 755
+/var/log/* root.adm 640
+/var/log/security/ root.root 700
+/var/log/security/* root.root 600
+/var/spool/mail/ root.mail 2775
diff --git a/conf/perm.3 b/conf/perm.3
new file mode 100644
index 0000000..2c8520d
--- /dev/null
+++ b/conf/perm.3
@@ -0,0 +1,66 @@
+# Welcome in Level 3
+###
+/bin/ root.root 755
+/boot/ root.root 755
+/dev/ root.root 755
+/dev/audio* root.audio 660
+/dev/dsp* root.audio 660
+/etc/ root.root 755
+/etc/conf.modules root.root 644
+/etc/cron.daily/ root.root 755
+/etc/cron.hourly/ root.root 755
+/etc/cron.monthly/ root.root 755
+/etc/cron.weekly/ root.root 755
+/etc/crontab root.root 644
+/etc/dhcpcd/ root.root 755
+/etc/dhcpcd/* root.root 644
+/etc/esd.conf root.root 644
+/etc/ftpaccess root.root 644
+/etc/ftpconversions root.root 644
+/etc/ftpgroups root.root 644
+/etc/ftphosts root.root 644
+/etc/ftpusers root.root 644
+/etc/gettydefs root.root 644
+/etc/hosts.allow root.root 644
+/etc/hosts.deny root.root 644
+/etc/hosts.equiv root.root 644
+/etc/inetd.conf root.root 644
+/etc/init.d/ root.root 755
+/etc/rc.d/init.d/syslog root.root 700
+/etc/inittab root.root 644
+/etc/ld.so.conf root.root 644
+/etc/lilo.conf root.root 644
+/etc/modules.conf root.root 644
+/etc/motd root.root 644
+/etc/printcap root.root 644
+/etc/profile root.root 644
+/etc/rc.d/ root.root 755
+/etc/securetty root.root 644
+/etc/sendmail.cf root.root 644
+/etc/shutdown.allow root.root 644
+/etc/ssh_config root.root 644
+/etc/ssh_host_key root.root 644
+/etc/ssh_host_key.pub root.root 644
+/etc/sshd_config root.root 644
+/etc/syslog.conf root.adm 640
+/etc/updatedb.conf root.root 644
+/home/ root.root 755
+/home/* current 700
+/lib/ root.root 755
+/mnt/ root.root 755
+/root/ root.root 700
+/sbin/ root.root 755
+/tmp/ root.root 1777
+/usr/ root.root 755
+/usr/* root.root 755
+/usr/X11R6/ root.root 755
+/usr/bin/ root.root 755
+/usr/bin/* root.root 755
+/usr/sbin/ root.root 755
+/usr/sbin/* root.root 755
+/var/ root.root 755
+/var/log/ root.root 755
+/var/log/* root.root 600
+/var/log/security/ root.root 700
+/var/log/security/* root.root 600
+/var/spool/mail/ root.mail 2775
diff --git a/conf/perm.4 b/conf/perm.4
new file mode 100644
index 0000000..ef31596
--- /dev/null
+++ b/conf/perm.4
@@ -0,0 +1,66 @@
+# Welcome in Level 4, aka secure & usable.
+###
+/bin/ root.root 711
+/boot/ root.root 700
+/dev/ root.root 711
+/dev/audio* root.audio 600
+/dev/dsp* root.audio 600
+/etc/ root.adm 711
+/etc/conf.modules root.adm 640
+/etc/cron.daily/ root.adm 750
+/etc/cron.hourly/ root.adm 750
+/etc/cron.monthly/ root.adm 750
+/etc/cron.weekly/ root.adm 750
+/etc/crontab root.adm 640
+/etc/dhcpcd/ root.adm 750
+/etc/dhcpcd/* root.adm 640
+/etc/esd.conf root.audio 640
+/etc/ftpaccess root.adm 640
+/etc/ftpconversions root.adm 640
+/etc/ftpgroups root.adm 640
+/etc/ftphosts root.adm 640
+/etc/ftpusers root.adm 640
+/etc/gettydefs root.adm 640
+/etc/hosts.allow root.adm 640
+/etc/hosts.deny root.adm 640
+/etc/hosts.equiv root.adm 640
+/etc/inetd.conf root.adm 640
+/etc/rc.d/init.d/ root.adm 750
+/etc/rc.d/init.d/syslog root.adm 740
+/etc/inittab root.adm 640
+/etc/ld.so.conf root.adm 640
+/etc/lilo.conf root.adm 600
+/etc/modules.conf root.adm 640
+/etc/motd root.adm 644
+/etc/printcap root.lp 640
+/etc/profile root.root 644
+/etc/rc.d/ root.adm 640
+/etc/securetty root.adm 640
+/etc/sendmail.cf root.adm 640
+/etc/shutdown.allow root.root 600
+/etc/ssh_config root.root 644
+/etc/ssh_host_key root.adm 640
+/etc/ssh_host_key.pub root.adm 644
+/etc/sshd_config root.adm 640
+/etc/syslog.conf root.adm 640
+/etc/updatedb.conf root.adm 640
+/home/ root.adm 751
+/home/* current 700
+/lib/ root.adm 751
+/mnt/ root.adm 750
+/root/ root.root 700
+/sbin/ root.adm 751
+/tmp/ root.root 1777
+/usr/ root.adm 751
+/usr/* root.adm 751
+/usr/X11R6/ root.xgrp 751
+/usr/bin/ root.adm 751
+/usr/bin/* root.root 755
+/usr/sbin/ root.adm 751
+/usr/sbin/* root.root 755
+/var/ root.root 755
+/var/log/ root.root 711
+/var/log/* root.root 600
+/var/log/security/ root.root 700
+/var/log/security/* root.root 600
+/var/spool/mail/ root.mail 771
diff --git a/conf/perm.5 b/conf/perm.5
new file mode 100644
index 0000000..a4d5755
--- /dev/null
+++ b/conf/perm.5
@@ -0,0 +1,67 @@
+# Welcome in Level 5, aka paranoid.
+###
+/bin/ root.root 711
+/boot/ root.root 700
+/dev/ root.root 711
+/dev/audio* root.audio 600
+/dev/dsp* root.audio 600
+/etc/ root.root 711
+/etc/conf.modules root.root 600
+/etc/cron.daily/ root.root 700
+/etc/cron.hourly/ root.root 700
+/etc/cron.monthly/ root.root 700
+/etc/cron.weekly/ root.root 700
+/etc/crontab root.root 600
+/etc/dhcpcd/ root.root 700
+/etc/dhcpcd/* root.root 600
+/etc/esd.conf root.audio 640
+/etc/ftpaccess root.root 600
+/etc/ftpconversions root.root 600
+/etc/ftpgroups root.root 600
+/etc/ftphosts root.root 600
+/etc/ftpusers root.root 600
+/etc/gettydefs root.root 600
+/etc/hosts.allow root.root 600
+/etc/hosts.deny root.root 600
+/etc/hosts.equiv root.root 600
+/etc/inetd.conf root.root 600
+/etc/rc.d/init.d/ root.root 700
+/etc/rc.d/init.d/syslog root.root 700
+/etc/inittab root.root 600
+/etc/ld.so.conf root.root 600
+/etc/lilo.conf root.root 600
+/etc/modules.conf root.root 600
+/etc/motd root.root 644
+/etc/printcap root.lp 640
+/etc/profile root.root 644
+/etc/rc.d/ root.root 600
+/etc/securetty root.root 600
+/etc/sendmail.cf root.root 600
+/etc/shutdown.allow root.root 600
+/etc/ssh_config root.root 644
+/etc/ssh_host_key root.root 600
+/etc/ssh_host_key.pub root.root 644
+/etc/sshd_config root.root 600
+/etc/syslog.conf root.root 600
+/etc/updatedb.conf root.root 600
+/home/ root.root 711
+/home/* current 700
+/lib/ root.root 711
+/mnt/ root.root 710
+/root/ root.root 700
+/sbin/ root.root 711
+/tmp/ root.root 1777
+/usr/ root.root 711
+/usr/* root.root 711
+/usr/X11R6/ root.xgrp 710
+/usr/bin/ root.root 711
+/usr/bin/* root.root 755
+/usr/sbin/ root.root 711
+/usr/sbin/* root.root 700
+/usr/sbin/sendmail root.root 755
+/var/ root.root 755
+/var/log/ root.root 711
+/var/log/* root.root 600
+/var/log/security/ root.root 700
+/var/log/security/* root.root 600
+/var/spool/mail/ root.mail 771
diff --git a/conf/server.4 b/conf/server.4
new file mode 100644
index 0000000..044f0bf
--- /dev/null
+++ b/conf/server.4
@@ -0,0 +1,6 @@
+crond
+syslog
+keytable
+network
+gpm
+xfs
diff --git a/conf/server.5 b/conf/server.5
new file mode 100644
index 0000000..044f0bf
--- /dev/null
+++ b/conf/server.5
@@ -0,0 +1,6 @@
+crond
+syslog
+keytable
+network
+gpm
+xfs
generated by cgit v1.2.1 (git 2.21.0) at 2024-11-17 06:58:18 +0000