Please post the exact complete and total statement from your stated source and state the exact and complete and total list of relevant software you are running in this context and describe in exact and complete and total detail regarding which software is under the spotlight in today's "server hardening" exercise.
Please, please, please do not relay your own understanding of this issue but the complete and total detail of this issue.
Can you please elaborate in simple statement?Which software you are talking about.
I m doing linux server hardening regardless of any document but online stuff.
As i m new to linux i m posting it under linux newbie section.Please give me some time to fully understand the environment.
However as you can see i have done something to make it work and here just evaluating whether it is correct or not?
---------- Post updated at 07:07 AM ---------- Previous update was at 07:04 AM ----------
Quote:
Originally Posted by thegeek
Frame the find command, as u require.
Everywhere
Only directories ( if both files dont mention )
root owned files
permission bits
Thanks that was very helpful i will keep this in mind.
I am trying to write a CGI program which accesses UNIX configuration files and changes them as required.
The thing is, I don't want the CGI program to be "root" owned - it's Perl based! Is there any way that the Perl CGI program can request a username and password - and then use this to... (1 Reply)
Hi Group,
Could someone tell me how to find world writable files on my server? I can use find command in conjuction with -perm option and I will get an output. But what I need is an output which looks similar to ls -l output. Meaning, it should give me the full path of the file along with the... (1 Reply)
Hello,
i just wanted to know how do i find out the list of users whose terminal is writable?i mean i used
who -T
but this gives a list of all users whose terminal is writable or blocked and not writable. So how do i do this?I am new to Unix. (2 Replies)
I've tried to figure this out.
I'm only about 6 mos into my AIX admin duties, but I've got a "security" problem I can't figure out.
I've created a sub directory as follows:
drwx------ 2 root system 256 Apr 13 16:02 mike
I've logged in another session with the following user:
$ id... (2 Replies)
Hi,
I want to know if the is a way I can list the directories owned by a given user. Say i am logged in as that user.
I found out the find command lists the files owned by a certain user/group
but i want to know only the directories and if possible the permissions associated with these... (6 Replies)
Good day. I was looking at implementing a chroot environment using openssh. I know I can use the sshd_config file and dictate that it is to use chroot for a specific directory for a user/group. However, the issue with this is that it is has to be root owned. To my knowledge, there is no mount... (0 Replies)
Hi
I'm logged in to an AIX box now and we need to do an audit on this box.
cbssapr01:# pwd
/
Which command will show all the files and directories owned by root user with permissions as 777 ? (8 Replies)
Hello.
On my family laptop, I have a directory named /local.
It is owned by root.
I want to create a sub-directory named documents ( /local/documents ).
I want to exclude exec for every body in that directory
I want every authenticated linux user can create a sub directory ( ie :... (7 Replies)
what is wrong with this script?
I get:
./perm.sh: command substitution: line 21: unexpected EOF while looking for matching `"'
./perm.sh: command substitution: line 22: syntax error: unexpected end of file
Script:
#!/bin/bash
for dir in `/bin/cat /etc/passwd | /bin/egrep -v... (4 Replies)
I want to zip up my fstab file for backup purposes.
This does not work because of permission issues.
cd /etc/
zip -u fstab.zip fstab
Can I use this with zip?
echo xxx | sudo -S
or change fstab owner to me? (3 Replies)
Discussion started by: drew77
3 Replies
LEARN ABOUT OSF1
genufi
genufi(8) System Manager's Manual genufi(8)NAME
genufi - Generates a User File Inventory (UFI) file
SYNOPSIS
/usr/bin/genufi
DESCRIPTION
The genufi utility creates a User File Inventory (UFI) file that contains the names of user files created or copied to your system after an
installation. Some of these files reside on file systems that are overwritten during a new installation of the operating system. You must
have superuser privileges to run the genufi utility, and you must invoke the genufi utility from the /usr/.smdb. directory.
To create the UFI file, the genufi utility checks the Master Synchronization Inventory (MSI) file created by the invsync utility to deter-
mine which file systems will be overwritten by a complete installation. The genufi utility searches those file systems for user files and
writes these entries to the UFI file. File systems that remain intact during a new installation of the operating system are not searched.
The genufi utility also filters out certain files and directories that would not commonly be considered for backup. For example, some log
files, installation files, and temporary directories do not need to be restored after a complete installation and are not written to the
UFI file.
The following directories are not included:
/tmp /tmp /usr/.smdb. /usr/sys/HOST /var/adm/smlogs /var/adm/syslog.dated /var/rwho /var/tmp
In the previous list, HOST represents the hostname of the system (such as /usr/sys/BLUTO) on the system named bluto.
The following files are not included:
*/core */*.dummy */.new.. /osf_boot */.profile */.proto.. /var/adm/binary.errlog /var/adm/xdm/xdm-pid */vmcore /*vmunix
Edit the UFI file to remove the entries for files and directories that you do not want to back up. The UFI file is written in the setld
inventory file format. Refer to the stl_inv(4) reference page for more information.
RESTRICTIONS
You must have superuser privileges to run the genufi utility.
You must invoke the genufi utility from the /usr/.smdb. directory.
FILES
Master Synchronization Inventory file User File Inventory file
SEE ALSO ils(8), invsync(8), udelta(8), udetect(8), updmv(8), usync stl_inv(4)genufi(8)