Would someone do me a big favor? I'm putting together a quick security
checklist for DU (v4.0c and even 3.2g!), and I don't have ready access
to either, which makes for a challenge. I can find most of what I need
in the online docs, but some items aren't addressed there, like the
ownership of and permissions on a few key files. Could someone issue
these list commands and let me know what they report back?
ls -a /etc/passwd
ls -a /etc/auth/system/default
ls -a /etc/group
ls -a /etc/hosts.equiv
ls -a /etc/svc.conf
ls -a /etc/inet/inetd.conf
ls -a /tcb/files/auth/r/root
ls -a /tcb/files/auth/[a-z]/* # (Any single file in this list will do.)
ls -a /var/audit/auditlog
Does anyone happen to know what accounts (say, lp or field) come
preloaded in /etc/passwd?
And one other minor question. What gets put in the password field in
/etc/passwd with enhanced security (when C1Crypt is not being used).
I'd guess it's either empty or perhaps has an asterisk or some other
single character.
Whatever help you can give me with these questions, I appreciate it!
Thanks!
Wayne
Received on Mon Oct 15 2001 - 22:29:11 NZDT