You are not logged in.

#1 2009-07-15 12:22:26

rusty99
Member
Registered: 2009-03-18
Posts: 253

Workstation hardening

I was looking at various ways of hardening a linux system, one thing I came across quite a lot is hardening root authentication.
chgrp wheel /bin/su
chmod 4750 /bin/su
-rwsr-x--- root wheel /bin/su

or second option keeps world executable but auth required pam_wheel.so use_uid is uncommented in /etc/pam.d/su
-rwsr-x--x root root /bin/su

Is there any benefit to using one method over the other?
If I wanted 600 permission for logs where/how can I set it so any newly created log maintains root rw only?

Offline

Board footer

Powered by FluxBB