Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Access Control List questions
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
jesterspet
Apprentice
Apprentice


Joined: 05 Feb 2003
Posts: 215
Location: Atlanta
PostPosted: Sun Aug 31, 2003 7:26 am    Post subject: Access Control List questions Reply with quote
I have seen a couple of things that are making me think that ACL's would be a good idea to implement on my Gentoo box, however, I have a few reservations.


    [img:0641c2fb33]http://www.watchfarscape.com/forums/images/smilies/biggrinjullare.gif[/img:0641c2fb33] Using the mentality of that which is not explicitly allowed is denied, how would one go about finding out exactly what is needed to achieve this level of security?

    [img:0641c2fb33]http://www.watchfarscape.com/forums/images/smilies/biggrinjullare.gif[/img:0641c2fb33] Is there a base that one can start from, and add to as the need arises? A Gentoo base configuration for the stuff installed in a articular live-cd staged install would suffice.

    [img:0641c2fb33]http://www.watchfarscape.com/forums/images/smilies/biggrinjullare.gif[/img:0641c2fb33] Troubleshooting ACL's for newly installed or upgraded software, seems to bea very time consuming and tedious process (akin to debugging code). How can a person perform this duty in a timely & effective manner? or even better, automate the process either partially or completely?

    [img:0641c2fb33]http://www.watchfarscape.com/forums/images/smilies/biggrinjullare.gif[/img:0641c2fb33] Since this will be a learning expierence for me, the ability to undo what I have done is really important to me. What safeguards or precautions would be a good idea to abide by?

_________________
(X) Yes! I am a brain damaged lemur on crack, and would like to buy your software package for $499.95
Back to top
View user's profile Send private message
jesterspet
Apprentice
Apprentice


Joined: 05 Feb 2003
Posts: 215
Location: Atlanta
PostPosted: Mon Sep 08, 2003 3:00 am    Post subject: Reply with quote
Have I stumped the entire Gentoo community?

OR

Did I ask something that could be answered by a 13yr old armed with a speak & spell?
_________________
(X) Yes! I am a brain damaged lemur on crack, and would like to buy your software package for $499.95
Back to top
View user's profile Send private message
devon
l33t
l33t


Joined: 23 Jun 2003
Posts: 943
PostPosted: Mon Sep 08, 2003 3:54 am    Post subject: Reply with quote
Are you refering to the grsec ACLs? There is some utility you can use that will "watch" programs and write a generic ACL file. I remember reading about when I read some grsec docs I found from Gentoo.

You may find better help at #gentoo-hardened on the IRC server.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy