Quote:
Originally Posted by
Corona688
Understand this: If he has the power to start and stop services, the battle is already lost. He could ignore them and install his own, rootkit you, replace everything, do whatever he wanted.
Yes sir this is also under my consideration, I know it's kind of crazy, but let me try it. I want also to change the
service command name, and the
reboot command, and any other command could effect the system.
In other word, I want to keep the system as is, but in the same time I wanna give different names for the services and any command under /sbin directory.
I hope that everybody here understand my point, I do highly respect iptables and SELinux as a security systems for sure, but I want to add more security to the system, changing all the effective commands (and paths if available
).
On the other hand, what if I want to run a special service in a specific time in my system and I don't want anybody knows what this service do (like monitoring service for bad users or admins), and I want in the same time change this service name to a misleading name, no one can discover this service, and that's why I want am alternative service instead of crond (see my other topic in this forum), to schedule this service in the dark
. This is for sure should be done with filtering any log files that made by this.
The thing that I do believe with, is Linux doable, and can do it. Any suggestions and criticizes are most welcomed.