[1839] in linux-security and linux-alert archive
[linux-security] Re: Named update for RH 4.2 exploitable?
daemon@ATHENA.MIT.EDU (Jon Lewis)
Sun Jun 7 19:25:51 1998
Date: Sun, 7 Jun 1998 16:39:13 -0400 (EDT)
From: Jon Lewis <jlewis@inorganic5.fdt.net>
To: linux-security@redhat.com
In-Reply-To: <3.0.3.32.19980607141708.0072efa0@hostingservices.net>
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com
On Sun, 7 Jun 1998, Mike Carpenter wrote:
> Next logical question: Has anyone worked out rpms for tripwire, COPS, etc?
> and why aren't these necessary security applications a standard part of ALL
> distributions?
For RedHat, tripwire would be relatively redundant. If you keep a copy of
your rpm database on some sort of removable, remote, or read-only media,
you can use rpm -V to look for things that are out of sync as far as
permissions or md5sum go.
If you do want it though, it's been in the contrib dir at ftp.redhat.com
for quite some time:
-rw-r--r-- 1 root root 368029 Feb 7 1997 tripwire-1.2-1.i386.rpm
BTW...for an unmoderated linux-specific security discussion list, send an
empty email to lsd-request@dhp.com with a subject of subscribe.
------------------------------------------------------------------
Jon Lewis <jlewis@fdt.net> | Spammers will be winnuked or
Network Administrator | drawn and quartered...whichever
Florida Digital Turnpike | is more convenient.
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null