From 1149e92a19b241628d8e43596e4e74d11fd8e40e Mon Sep 17 00:00:00 2001 From: Yoann Vandoorselaere Date: Thu, 6 Jan 2000 14:27:46 +0000 Subject: *** empty log message *** --- ChangeLog | 2 ++ cron-sh/security.sh | 10 +++++----- init-sh/level3.sh | 2 +- init-sh/level4.sh | 4 ++-- init-sh/level5.sh | 4 ++-- msec.spec | 2 ++ 6 files changed, 14 insertions(+), 10 deletions(-) diff --git a/ChangeLog b/ChangeLog index fb74cfe..26f89c4 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,4 +1,6 @@ 2000-01-06 Yoann Vandoorselaere + * security.sh : find are niced to (+19) + * Camille updated the documentation. * Removed the "spawn a shell on boot" feature of level0 cause of a tty problem diff --git a/cron-sh/security.sh b/cron-sh/security.sh index f238c07..43ad9d6 100755 --- a/cron-sh/security.sh +++ b/cron-sh/security.sh @@ -72,11 +72,11 @@ fi netstat -pvlA inet 2> /dev/null > ${OPEN_PORT_TODAY}; -find ${DIR} -xdev -type f -perm +04000 -user root -printf "${PRINT}" 2> /dev/null | sort > ${SUID_ROOT_TODAY} -find ${DIR} -xdev -type f -perm +02000 -printf "${PRINT}" 2> /dev/null | sort > ${SUID_GROUP_TODAY} -find ${DIR} -xdev -type f -perm -2 -printf "${PRINT}" 2> /dev/null | sort > ${WRITEABLE_TODAY} -find ${DIR} -xdev -nouser -printf "${PRINT}" 2> /dev/null | sort > ${UNOWNED_USER_TODAY} -find ${DIR} -xdev -nogroup -printf "${PRINT}" 2> /dev/null | sort > ${UNOWNED_GROUP_TODAY} +nice --adjustment=+19 find ${DIR} -xdev -type f -perm +04000 -user root -printf "${PRINT}" 2> /dev/null | sort > ${SUID_ROOT_TODAY} +nice --adjustment=+19 find ${DIR} -xdev -type f -perm +02000 -printf "${PRINT}" 2> /dev/null | sort > ${SUID_GROUP_TODAY} +nice --adjustment=+19 find ${DIR} -xdev -type f -perm -2 -printf "${PRINT}" 2> /dev/null | sort > ${WRITEABLE_TODAY} +nice --adjustment=+19 find ${DIR} -xdev -nouser -printf "${PRINT}" 2> /dev/null | sort > ${UNOWNED_USER_TODAY} +nice --adjustment=+19 find ${DIR} -xdev -nogroup -printf "${PRINT}" 2> /dev/null | sort > ${UNOWNED_GROUP_TODAY} while read line; do md5sum ${line} diff --git a/init-sh/level3.sh b/init-sh/level3.sh index 20d5202..1e78f93 100755 --- a/init-sh/level3.sh +++ b/init-sh/level3.sh @@ -59,7 +59,7 @@ echo -e "\t- Security warning in syslog : yes." # Crontab echo "Adding permission check in crontab (scheduled every midnight) :" -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab +AddRules "0 0 * * * root /etc/security/msec/cron-sh/security.sh" /etc/crontab # lilo update echo -n "Running lilo to record new config : " diff --git a/init-sh/level4.sh b/init-sh/level4.sh index 2326b78..18d9aac 100755 --- a/init-sh/level4.sh +++ b/init-sh/level4.sh @@ -68,10 +68,10 @@ echo -e "\t- Security warning in syslog : yes." # Check every 1 minutes for promisc problem echo "Adding promisc check in crontab (scheduled every minutes) :" -AddRules "*/1 * * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/promisc_check.sh" /etc/crontab +AddRules "*/1 * * * * root /etc/security/msec/cron-sh/promisc_check.sh" /etc/crontab echo "Adding \"diff\" & \"global\" security check in crontab (scheduled every midnight) :" -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab +AddRules "0 0 * * * root /etc/security/msec/cron-sh/security.sh" /etc/crontab # Do you want a password ? LiloUpdate; diff --git a/init-sh/level5.sh b/init-sh/level5.sh index 03db3db..9e8af53 100755 --- a/init-sh/level5.sh +++ b/init-sh/level5.sh @@ -60,10 +60,10 @@ echo -e "\t- Security warning in syslog : yes." ################ Crontab things ################### # Check every 1 minutes for promisc problem echo "Adding promisc check in crontab (scheduled every minutes) :" -AddRules "*/1 * * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/promisc_check.sh" /etc/crontab +AddRules "*/1 * * * * root /etc/security/msec/cron-sh/promisc_check.sh" /etc/crontab echo "Adding \"diff\" & \"global\" security check in crontab (scheduled every midnight) :" -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab +AddRules "0 0 * * * root /etc/security/msec/cron-sh/security.sh" /etc/crontab ################################################### diff --git a/msec.spec b/msec.spec index b47054e..8744654 100644 --- a/msec.spec +++ b/msec.spec @@ -46,6 +46,8 @@ rm -rf $RPM_BUILD_ROOT %changelog * Tue Jan 06 2000 Yoann Vandoorselaere +- security.sh : find are niced to (+19) +- Camille updated the documentation. - Removed the "spawn a shell on boot" feature of level0 cause of a tty problem. - shutdown.allow is 600 in level 4/5; 644 else. - updated doc/security.txt -- cgit v1.2.1