[1294] in linux-security and linux-alert archive
[linux-security] Lib* madness
daemon@ATHENA.MIT.EDU (Darren Crane)
Thu Nov 14 17:34:02 1996
Old-X-Envelope-From: dcrane@ivs.piedmont.net Wed Nov 13 08:30:26 1996
Date: Wed, 13 Nov 1996 08:30:51 -0500 (EST)
From: Darren Crane <dcrane@ivs.piedmont.net>
To: linux-security@redhat.com
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com
Hello,
I have a small problem which has grown (and continues to grow) over the
years. I have upgraded my linux system so many times, I'm worried that I
have old, insecure libs and executables somewhere on my system which may
or may not be used to gain access to my system.
How do I determine which libs I should have where, and which libs are
safe to delete? There are some programs (netscape...) which I understand
need specific libs, but which ones? How do I determine an executable nees
a specific lib to run? How do I fence off the old, but needed libs to
only be used by these old programs which I can not recompile?
I realize one answer is to go with a fresh install of some new
distribution, but that's really not an answer cause it would take weeks to
recreate all the site specific things I have created over the years.
if this is not the place to ask this question, please delete this message.
Thanks
-Darren Crane
dcrane@ivs.piedmont.net