1
Download securing-debian
Transcript
Kapitel 1. Einleitung 1.6.25 17 Version 2.6 (September 2002) Changes by Chris Tillman, [email protected]. • Changed around to improve grammar/spelling. • s/host.deny/hosts.deny/ (1 place) • Applied Larry Holish’s patch (quite big, fixes a lot of FIXMEs) 1.6.26 Version 2.5 (September 2002) Changes by Javier Fernández-Sanguino Peña (me). • Fixed minor typos submitted by Thiemo Nagel. • Added a footnote suggested by Thiemo Nagel. • Fixed an URL link. 1.6.27 Version 2.5 (August 2002) Changes by Javier Fernández-Sanguino Peña (me). There were many things waiting on my inbox (as far back as february) to be included, so I’m going to tag this the back from honeymoon release :) • Added some information on how to setup the Xscreensaver to lock automatically the screen after the configured timeout. • Add a note related to the utilities you should not install in the system. Including a note regarding Perl and why it cannot be easily removed in Debian. The idea came after reading Intersect’s documents regarding Linux hardening. • Added information on lvm and journaling filesystems, ext3 recommended. The information there might be too generic, however. • Added a link to the online text version (check). • Added some more stuff to the information on firewalling the local system triggered by a comment made by Hubert Chan in the mailing list. • Added more information on PAM limits and pointers to Kurt Seifried’s documents (related to a post by him to Bugtraq on April 4th 2002 answering a person that had “discovered” a vulnerability in Debian GNU/Linux related to resource starvation) • As suggested by Julián Muñoz, provided more information on the default Debian umask and what a user can access if he has been given a shell in the system (scary, huh?)
