[1294] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Lib* madness

daemon@ATHENA.MIT.EDU (Darren Crane)
Thu Nov 14 17:34:02 1996

Old-X-Envelope-From: dcrane@ivs.piedmont.net  Wed Nov 13 08:30:26 1996
Date: Wed, 13 Nov 1996 08:30:51 -0500 (EST)
From: Darren Crane <dcrane@ivs.piedmont.net>
To: linux-security@redhat.com
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com

 Hello,
 I have a small problem which has grown (and continues to grow) over the
years.  I have upgraded my linux system so many times, I'm worried that I
have old, insecure libs and executables somewhere on my system which may
or may not be used to gain access to my system.
 How do I determine which libs I should have where, and which libs are
safe to delete?  There are some programs (netscape...) which I understand
need specific libs, but which ones?  How do I determine an executable nees
a specific lib to run?  How do I fence off the old, but needed libs to
only be used by these old programs which I can not recompile?
 I realize one answer is to go with a fresh install of some new
distribution, but that's really not an answer cause it would take weeks to
recreate all the site specific things I have created over the years.

 if this is not the place to ask this question, please delete this message.

	Thanks
	-Darren Crane
	 dcrane@ivs.piedmont.net


home help back first fref pref prev next nref lref last post