NOTE: use Perl; is on undef hiatus. You can read content, but you can't post it. More info will be forthcoming forthcomingly.
All the Perl that's Practical to Extract and Report
use Perl Log In
Purdy (2383)
Purdy
jasonNO@SPAMpurdy.info
http://purdy.info/
AOL IM: EmeraldWarp (Add Buddy, Send Message)
Yahoo! ID: jpurdy2 (Add User, Send Message)
Bleh - not feeling creative right now. You can check me out on PerlMonks [perlmonks.org].
jasonNO@SPAMpurdy.info
http://purdy.info/
AOL IM: EmeraldWarp (Add Buddy, Send Message)
Yahoo! ID: jpurdy2 (Add User, Send Message)
Bleh - not feeling creative right now. You can check me out on PerlMonks [perlmonks.org].
Monday December 17, 2001
10:08 AM
tripwire
In yet another security enhancement, I have installed tripwire. It is a very cool program that builds an internal database of files and their attributes (including MD5 checksum & so on) that you specify in a policy file. The database, configuration and policy files are encrypted with a passkey, so you will need that to affect any changes (so a hacker cannot simply change them). Then I set up 2 cron jobs, one for every hour testing a small policy file and one every day testing the whole system (early in the morning), which e-mail me.
Of course, this doesn't prohibit 'root' from deleting the tripwire files, but if a hacker has 'root' access, the game's over, as they say. Time to reformat your HD, and system/site restore (from a time BEFORE you were hacked) (and choose a new/better 'root' password
Jason
PS: Please don't take this as an invitation to hack my system.
Or is it a BUG?"
"Let's call it an accidental feature. :-)"
--Larry Wall in <6909@jpl-devvax.JPL.NASA.GOV>
Stories, comments, journals, and other submissions on use Perl; are Copyright 1998-2006, their respective owners.
tripwire 0 Comments More | Login | Reply /