I'm being a good network citizen and taking care of security on my
machines. Of course, this brings up more questions than it solves.
1) There's more than one machine, but one tape drive. I use rdump to back
up. rdump has to be run as root to get to the whole disk. It also starts
rmt on the machine with the tape drive. This means that I can't use
hosts.equiv (won't start root processes), I have to have a root .rhosts file,
that explicitly lists the machines with no tape, and root user. How bad is
this? What do I do about it?
2) A security checklist that I got a hold of (AUSCERT) said that bin-owned stuff
that is world readable but not world writable should be changed to root:system.
This is everything! Before I screw up the entire world, should I ignore this
one?
3) swapdefault file has permissions 777. Is this the way it's supposed to be?
Does this have negative ramifications?
Received on Tue Jan 23 1996 - 20:37:37 NZDT