CD Actual 3

home *** CD-ROM | disk | FTP | other *** search
/ CD Actual 3 / CD ACTUAL 3.iso / linux / docs / linux-do / network- / nag-1.002 / nag-1 / TheGuide / misc / manage.tex < prev next >
LaTeX Document | 1994-06-09 | 6.7 KB
open in:
MacOS 8.1 extracted |
Win98 extracted |
DOS extracted
browse contents |
view JSON data |
view as text

This file was processed as: LaTeX Document (document/latex).
Confidence	Program	Detection	Match Type	Support
`100%`	dexvert	LaTeX Document `(document/latex)`	magic	Supported
`1%`	dexvert	Corel 10 Texture `(image/corel10Texture)`	ext	Unsupported
`1%`	dexvert	Text File `(text/txt)`	fallback	Supported
`100%`	file	LaTeX document, ASCII text	default
`100%`	checkBytes	Printable ASCII	default
`100%`	perlTextCheck	Likely Text (Perl)	default
`100%`	siegfried	fmt/281 LaTeX (Subdocument)	default
`100%`	detectItEasy	Format: Plain text[LF]	default
hex view
+--------+-------------------------+-------------------------+--------+--------+
|00000000| 0a 5c 73 65 63 74 69 6f | 6e 7b 4d 61 69 6e 74 61 |.\sectio|n{Mainta|
|00000010| 69 6e 69 6e 67 20 59 6f | 75 72 20 53 79 73 74 65 |ining Yo|ur Syste|
|00000020| 6d 7d 0a 25 25 25 25 25 | 25 25 25 25 25 25 25 25 |m}.%%%%%|%%%%%%%%|
|00000030| 25 25 25 25 25 25 25 25 | 25 25 25 25 25 25 25 25 |%%%%%%%%|%%%%%%%%|
|00000040| 25 25 25 25 25 25 25 25 | 25 25 25 25 25 25 25 25 |%%%%%%%%|%%%%%%%%|
|00000050| 25 25 25 25 25 25 25 25 | 25 25 25 25 25 25 25 25 |%%%%%%%%|%%%%%%%%|
|00000060| 25 25 25 0a 54 68 72 6f | 75 67 68 6f 75 74 20 74 |%%%.Thro|ughout t|
|00000070| 68 69 73 20 62 6f 6f 6b | 2c 20 77 65 20 77 69 6c |his book|, we wil|
|00000080| 6c 20 6d 61 69 6e 6c 79 | 20 64 65 61 6c 20 77 69 |l mainly| deal wi|
|00000090| 74 68 20 69 6e 73 74 61 | 6c 6c 61 74 69 6f 6e 20 |th insta|llation |
|000000a0| 61 6e 64 0a 63 6f 6e 66 | 69 67 75 72 61 74 69 6f |and.conf|iguratio|
|000000b0| 6e 20 69 73 73 75 65 73 | 2e 20 41 64 6d 69 6e 69 |n issues|. Admini|
|000000c0| 73 74 72 61 74 69 6f 6e | 20 69 73 2c 20 68 6f 77 |stration| is, how|
|000000d0| 65 76 65 72 2c 20 6d 75 | 63 68 20 6d 6f 72 65 20 |ever, mu|ch more |
|000000e0| 74 68 61 6e 0a 74 68 61 | 74 7e 2d 2d 2d 20 61 66 |than.tha|t~--- af|
|000000f0| 74 65 72 20 73 65 74 74 | 69 6e 67 20 75 70 20 61 |ter sett|ing up a|
|00000100| 20 73 65 72 76 69 63 65 | 2c 20 79 6f 75 20 68 61 | service|, you ha|
|00000110| 76 65 20 74 6f 20 6b 65 | 65 70 20 69 74 20 72 75 |ve to ke|ep it ru|
|00000120| 6e 6e 69 6e 67 2c 20 74 | 6f 6f 2e 0a 46 6f 72 20 |nning, t|oo..For |
|00000130| 6d 6f 73 74 20 6f 66 20 | 74 68 65 6d 2c 20 6f 6e |most of |them, on|
|00000140| 6c 79 20 6c 69 74 74 6c | 65 20 61 74 74 65 6e 64 |ly littl|e attend|
|00000150| 61 6e 63 65 20 77 69 6c | 6c 20 62 65 20 6e 65 63 |ance wil|l be nec|
|00000160| 65 73 73 61 72 79 2c 20 | 77 68 69 6c 65 20 73 6f |essary, |while so|
|00000170| 6d 65 2c 0a 6c 69 6b 65 | 20 6d 61 69 6c 20 61 6e |me,.like| mail an|
|00000180| 64 20 6e 65 77 73 2c 20 | 72 65 71 75 69 72 65 20 |d news, |require |
|00000190| 74 68 61 74 20 79 6f 75 | 20 70 65 72 66 6f 72 6d |that you| perform|
|000001a0| 20 72 6f 75 74 69 6e 65 | 20 74 61 73 6b 73 20 74 | routine| tasks t|
|000001b0| 6f 20 6b 65 65 70 20 79 | 6f 75 72 0a 73 79 73 74 |o keep y|our.syst|
|000001c0| 65 6d 20 75 70 2d 74 6f | 2d 64 61 74 65 2e 20 20 |em up-to|-date.  |
|000001d0| 57 65 20 77 69 6c 6c 20 | 64 69 73 63 75 73 73 20 |We will |discuss |
|000001e0| 74 68 65 73 65 20 74 61 | 73 6b 73 20 69 6e 20 6c |these ta|sks in l|
|000001f0| 61 74 65 72 20 63 68 61 | 70 74 65 72 73 2e 0a 0a |ater cha|pters...|
|00000200| 0a 54 68 65 20 61 62 73 | 6f 6c 75 74 65 20 6d 69 |.The abs|olute mi|
|00000210| 6e 69 6d 75 6d 20 69 6e | 20 6d 61 69 6e 74 65 6e |nimum in| mainten|
|00000220| 61 6e 63 65 20 69 73 20 | 74 6f 20 63 68 65 63 6b |ance is |to check|
|00000230| 20 73 79 73 74 65 6d 20 | 61 6e 64 0a 70 65 72 2d | system |and.per-|
|00000240| 61 70 70 6c 69 63 61 74 | 69 6f 6e 20 6c 6f 67 20 |applicat|ion log |
|00000250| 66 69 6c 65 73 20 72 65 | 67 75 6c 61 72 6c 79 20 |files re|gularly |
|00000260| 66 6f 72 20 65 72 72 6f | 72 20 63 6f 6e 64 69 74 |for erro|r condit|
|00000270| 69 6f 6e 73 20 61 6e 64 | 20 75 6e 75 73 75 61 6c |ions and| unusual|
|00000280| 0a 65 76 65 6e 74 73 2e | 20 43 6f 6d 6d 6f 6e 6c |.events.| Commonl|
|00000290| 79 2c 20 79 6f 75 20 77 | 69 6c 6c 20 77 61 6e 74 |y, you w|ill want|
|000002a0| 20 74 6f 20 64 6f 20 74 | 68 69 73 20 62 79 20 77 | to do t|his by w|
|000002b0| 72 69 74 69 6e 67 20 61 | 20 63 6f 75 70 6c 65 20 |riting a| couple |
|000002c0| 6f 66 0a 61 64 6d 69 6e | 69 73 74 72 61 74 69 76 |of.admin|istrativ|
|000002d0| 65 20 73 68 65 6c 6c 20 | 73 63 72 69 70 74 73 20 |e shell |scripts |
|000002e0| 61 6e 64 20 72 75 6e 20 | 74 68 65 6d 20 66 72 6f |and run |them fro|
|000002f0| 6d 20 5c 70 72 6f 67 7b | 63 72 6f 6e 7d 20 70 65 |m \prog{|cron} pe|
|00000300| 72 69 6f 64 69 63 61 6c | 6c 79 2e 0a 54 68 65 20 |riodical|ly..The |
|00000310| 73 6f 75 72 63 65 20 64 | 69 73 74 72 69 62 75 74 |source d|istribut|
|00000320| 69 6f 6e 20 6f 66 20 73 | 6f 6d 65 20 6d 61 6a 6f |ion of s|ome majo|
|00000330| 72 20 61 70 70 6c 69 61 | 74 69 6f 6e 73 2c 20 6c |r applia|tions, l|
|00000340| 69 6b 65 20 5c 70 72 6f | 67 7b 73 6d 61 69 6c 7d |ike \pro|g{smail}|
|00000350| 20 6f 72 0a 43 7e 6e 65 | 77 73 2c 20 63 6f 6e 74 | or.C~ne|ws, cont|
|00000360| 61 69 6e 20 73 75 63 68 | 20 73 63 72 69 70 74 73 |ain such| scripts|
|00000370| 2e 20 59 6f 75 20 6f 6e | 6c 79 20 68 61 76 65 20 |. You on|ly have |
|00000380| 74 6f 20 74 61 69 6c 6f | 72 20 74 68 65 6d 20 74 |to tailo|r them t|
|00000390| 6f 20 73 75 69 74 20 79 | 6f 75 72 0a 6e 65 65 64 |o suit y|our.need|
|000003a0| 73 20 61 6e 64 20 70 72 | 65 66 65 72 65 6e 63 65 |s and pr|eference|
|000003b0| 73 2e 20 20 41 20 63 6f | 75 70 6c 65 20 6f 66 20 |s.  A co|uple of |
|000003c0| 73 61 6d 70 6c 65 20 73 | 63 72 69 70 74 73 20 69 |sample s|cripts i|
|000003d0| 73 20 72 65 70 72 6f 64 | 75 63 65 64 20 69 6e 0a |s reprod|uced in.|
|000003e0| 61 70 70 65 6e 64 69 78 | 7e 5c 72 65 66 7b 61 70 |appendix|~\ref{ap|
|000003f0| 70 65 6e 64 69 78 2e 73 | 63 72 69 70 74 73 7d 2e |pendix.s|cripts}.|
|00000400| 0a 0a 0a 54 68 65 20 6f | 75 74 70 75 74 20 66 72 |...The o|utput fr|
|00000410| 6f 6d 20 61 6e 79 20 6f | 66 20 79 6f 75 72 20 5c |om any o|f your \|
|00000420| 70 72 6f 67 7b 63 72 6f | 6e 7d 20 6a 6f 62 73 20 |prog{cro|n} jobs |
|00000430| 73 68 6f 75 6c 64 20 62 | 65 20 6d 61 69 6c 65 64 |should b|e mailed|
|00000440| 20 74 6f 20 61 6e 0a 61 | 64 6d 69 6e 69 73 74 72 | to an.a|dministr|
|00000450| 61 74 69 76 65 20 61 63 | 63 6f 75 6e 74 2e 20 42 |ative ac|count. B|
|00000460| 79 20 64 65 66 61 75 6c | 74 2c 20 6d 61 6e 79 20 |y defaul|t, many |
|00000470| 61 70 70 6c 69 63 61 74 | 69 6f 6e 73 20 77 69 6c |applicat|ions wil|
|00000480| 6c 20 73 65 6e 64 20 65 | 72 72 6f 72 0a 72 65 70 |l send e|rror.rep|
|00000490| 6f 72 74 73 2c 20 75 73 | 61 67 65 20 73 74 61 74 |orts, us|age stat|
|000004a0| 69 73 74 69 63 73 2c 20 | 6f 72 20 6c 6f 67 66 69 |istics, |or logfi|
|000004b0| 6c 65 20 73 75 6d 6d 61 | 72 69 65 73 20 74 6f 20 |le summa|ries to |
|000004c0| 74 68 65 20 5c 75 73 65 | 72 7b 72 6f 6f 74 7d 0a |the \use|r{root}.|
|000004d0| 61 63 63 6f 75 6e 74 2e | 20 54 68 69 73 20 6f 6e |account.| This on|
|000004e0| 6c 79 20 6d 61 6b 65 73 | 20 73 65 6e 73 65 20 69 |ly makes| sense i|
|000004f0| 66 20 79 6f 75 20 6c 6f | 67 20 69 6e 20 61 73 20 |f you lo|g in as |
|00000500| 5c 75 73 65 72 7b 72 6f | 6f 74 7d 20 66 72 65 71 |\user{ro|ot} freq|
|00000510| 75 65 6e 74 6c 79 3b 0a | 61 20 6d 75 63 68 20 62 |uently;.|a much b|
|00000520| 65 74 74 65 72 20 69 64 | 65 61 20 69 73 20 74 6f |etter id|ea is to|
|00000530| 20 66 6f 72 77 61 72 64 | 20 5c 75 73 65 72 7b 72 | forward| \user{r|
|00000540| 6f 6f 74 7d 27 73 20 6d | 61 69 6c 20 74 6f 20 79 |oot}'s m|ail to y|
|00000550| 6f 75 72 20 70 65 72 73 | 6f 6e 61 6c 0a 61 63 63 |our pers|onal.acc|
|00000560| 6f 75 6e 74 20 73 65 74 | 74 69 6e 67 20 75 70 20 |ount set|ting up |
|00000570| 61 20 6d 61 69 6c 20 61 | 6c 69 61 73 20 61 73 20 |a mail a|lias as |
|00000580| 64 65 73 63 72 69 62 65 | 64 20 69 6e 20 63 68 61 |describe|d in cha|
|00000590| 70 74 65 72 7e 5c 72 65 | 66 7b 73 6d 61 69 6c 7d |pter~\re|f{smail}|
|000005a0| 29 2e 0a 0a 0a 48 6f 77 | 65 76 65 72 20 63 61 72 |)....How|ever car|
|000005b0| 65 66 75 6c 6c 79 20 79 | 6f 75 20 68 61 76 65 20 |efully y|ou have |
|000005c0| 63 6f 6e 66 69 67 75 72 | 65 64 20 79 6f 75 72 20 |configur|ed your |
|000005d0| 73 69 74 65 2c 20 4d 75 | 72 70 68 79 27 73 20 6c |site, Mu|rphy's l|
|000005e0| 61 77 0a 67 75 61 72 61 | 6e 74 65 65 73 20 74 68 |aw.guara|ntees th|
|000005f0| 61 74 20 73 6f 6d 65 20 | 70 72 6f 62 6c 65 6d 20 |at some |problem |
|00000600| 5c 65 6d 70 68 7b 77 69 | 6c 6c 7d 20 73 75 72 66 |\emph{wi|ll} surf|
|00000610| 61 63 65 20 65 76 65 6e | 74 75 61 6c 6c 79 2e 20 |ace even|tually. |
|00000620| 54 68 65 72 65 66 6f 72 | 65 2c 0a 6d 61 69 6e 74 |Therefor|e,.maint|
|00000630| 61 69 6e 69 6e 67 20 61 | 20 73 79 73 74 65 6d 20 |aining a| system |
|00000640| 61 6c 73 6f 20 6d 65 61 | 6e 73 20 62 65 69 6e 67 |also mea|ns being|
|00000650| 20 61 76 61 69 6c 61 62 | 6c 65 20 66 6f 72 20 63 | availab|le for c|
|00000660| 6f 6d 70 6c 61 69 6e 74 | 73 2e 20 55 73 75 61 6c |omplaint|s. Usual|
|00000670| 6c 79 2c 0a 70 65 6f 70 | 6c 65 20 65 78 70 65 63 |ly,.peop|le expec|
|00000680| 74 20 74 68 61 74 20 74 | 68 65 20 73 79 73 74 65 |t that t|he syste|
|00000690| 6d 20 61 64 6d 69 6e 69 | 73 74 72 61 74 6f 72 20 |m admini|strator |
|000006a0| 63 61 6e 20 61 74 20 6c | 65 61 73 74 20 62 65 20 |can at l|east be |
|000006b0| 72 65 61 63 68 65 64 20 | 76 69 61 0a 65 6d 61 69 |reached |via.emai|
|000006c0| 6c 20 61 73 20 5c 65 6d | 61 69 6c 7b 72 6f 6f 74 |l as \em|ail{root|
|000006d0| 7d 2c 20 62 75 74 20 74 | 68 65 72 65 20 61 72 65 |}, but t|here are|
|000006e0| 20 61 6c 73 6f 20 6f 74 | 68 65 72 20 61 64 64 72 | also ot|her addr|
|000006f0| 65 73 73 65 73 20 74 68 | 61 74 20 61 72 65 0a 63 |esses th|at are.c|
|00000700| 6f 6d 6d 6f 6e 6c 79 20 | 75 73 65 64 20 74 6f 20 |ommonly |used to |
|00000710| 72 65 61 63 68 20 74 68 | 65 20 70 65 72 73 6f 6e |reach th|e person|
|00000720| 20 72 65 73 70 6f 6e 73 | 69 62 6c 65 20 66 6f 72 | respons|ible for|
|00000730| 20 61 20 73 70 65 63 69 | 66 69 63 20 61 73 70 65 | a speci|fic aspe|
|00000740| 63 74 20 6f 66 0a 6d 61 | 69 6e 74 65 6e 65 6e 63 |ct of.ma|intenenc|
|00000750| 65 2e 20 46 6f 72 20 69 | 6e 73 74 61 6e 63 65 2c |e. For i|nstance,|
|00000760| 20 63 6f 6d 70 6c 61 69 | 6e 74 73 20 61 62 6f 75 | complai|nts abou|
|00000770| 74 20 61 20 6d 61 6c 66 | 75 6e 63 74 69 6f 6e 69 |t a malf|unctioni|
|00000780| 6e 67 20 6d 61 69 6c 0a | 63 6f 6e 66 69 67 75 72 |ng mail.|configur|
|00000790| 61 74 69 6f 6e 20 77 69 | 6c 6c 20 75 73 75 61 6c |ation wi|ll usual|
|000007a0| 6c 79 20 62 65 20 61 64 | 64 72 65 73 73 65 64 20 |ly be ad|dressed |
|000007b0| 5c 65 6d 61 69 6c 7b 70 | 6f 73 74 6d 61 73 74 65 |\email{p|ostmaste|
|000007c0| 72 7d 3b 20 61 6e 64 20 | 70 72 6f 62 6c 65 6d 73 |r}; and |problems|
|000007d0| 0a 77 69 74 68 20 74 68 | 65 20 6e 65 77 73 20 73 |.with th|e news s|
|000007e0| 79 73 74 65 6d 20 6d 61 | 79 20 62 65 20 72 65 70 |ystem ma|y be rep|
|000007f0| 6f 72 74 65 64 20 74 6f | 20 5c 65 6d 61 69 6c 7b |orted to| \email{|
|00000800| 6e 65 77 73 6d 61 73 74 | 65 72 7d 20 6f 72 0a 5c |newsmast|er} or.\|
|00000810| 65 6d 61 69 6c 7b 75 73 | 65 6e 65 74 7d 2e 20 4d |email{us|enet}. M|
|00000820| 61 69 6c 20 74 6f 20 5c | 65 6d 61 69 6c 7b 68 6f |ail to \|email{ho|
|00000830| 73 74 6d 61 73 74 65 72 | 7d 20 73 68 6f 75 6c 64 |stmaster|} should|
|00000840| 20 62 65 20 72 65 64 69 | 72 65 63 74 65 64 20 74 | be redi|rected t|
|00000850| 6f 20 74 68 65 0a 70 65 | 72 73 6f 6e 20 69 6e 20 |o the.pe|rson in |
|00000860| 63 68 61 72 67 65 20 6f | 66 20 74 68 65 20 68 6f |charge o|f the ho|
|00000870| 73 74 27 73 20 62 61 73 | 69 63 20 6e 65 74 77 6f |st's bas|ic netwo|
|00000880| 72 6b 20 73 65 72 76 69 | 63 65 73 2c 20 61 6e 64 |rk servi|ces, and|
|00000890| 20 74 68 65 20 44 4e 53 | 20 6e 61 6d 65 0a 73 65 | the DNS| name.se|
|000008a0| 72 76 69 63 65 20 69 66 | 20 79 6f 75 20 72 75 6e |rvice if| you run|
|000008b0| 20 61 20 6e 61 6d 65 20 | 73 65 72 76 65 72 2e 0a | a name |server..|
|000008c0| 0a 0a 5c 73 75 62 73 65 | 63 74 69 6f 6e 7b 53 79 |..\subse|ction{Sy|
|000008d0| 73 74 65 6d 20 53 65 63 | 75 72 69 74 79 7d 0a 25 |stem Sec|urity}.%|
|000008e0| 25 25 25 25 25 25 25 25 | 25 25 25 25 25 25 25 25 |%%%%%%%%|%%%%%%%%|
|000008f0| 25 25 25 25 25 25 25 25 | 25 25 25 25 25 25 25 25 |%%%%%%%%|%%%%%%%%|
|00000900| 25 25 25 25 25 25 25 25 | 25 25 25 25 25 25 25 25 |%%%%%%%%|%%%%%%%%|
|00000910| 25 25 25 25 25 25 25 25 | 25 25 25 25 25 25 25 25 |%%%%%%%%|%%%%%%%%|
|00000920| 0a 41 6e 6f 74 68 65 72 | 20 76 65 72 79 20 69 6d |.Another| very im|
|00000930| 70 6f 72 74 61 6e 74 20 | 61 73 70 65 63 74 20 6f |portant |aspect o|
|00000940| 66 20 73 79 73 74 65 6d | 20 61 64 6d 69 6e 69 73 |f system| adminis|
|00000950| 74 72 61 74 69 6f 6e 20 | 69 6e 20 61 20 6e 65 74 |tration |in a net|
|00000960| 77 6f 72 6b 0a 65 6e 76 | 69 72 6f 6e 6d 65 6e 74 |work.env|ironment|
|00000970| 20 69 73 20 70 72 6f 74 | 65 63 74 69 6e 67 20 79 | is prot|ecting y|
|00000980| 6f 75 72 20 73 79 73 74 | 65 6d 20 61 6e 64 20 75 |our syst|em and u|
|00000990| 73 65 72 73 20 66 72 6f | 6d 20 69 6e 74 72 75 64 |sers fro|m intrud|
|000009a0| 65 72 73 2e 0a 43 61 72 | 65 6c 65 73 73 6c 79 20 |ers..Car|elessly |
|000009b0| 6d 61 6e 61 67 65 64 20 | 73 79 73 74 65 6d 73 20 |managed |systems |
|000009c0| 6f 66 66 65 72 20 6d 61 | 6c 69 63 69 6f 75 73 20 |offer ma|licious |
|000009d0| 70 65 6f 70 6c 65 20 6d | 61 6e 79 20 74 61 72 67 |people m|any targ|
|000009e0| 65 74 73 3a 20 20 61 74 | 74 61 63 6b 73 0a 72 61 |ets:  at|tacks.ra|
|000009f0| 6e 67 65 20 66 72 6f 6d | 20 70 61 73 73 77 6f 72 |nge from| passwor|
|00000a00| 64 20 67 75 65 73 73 69 | 6e 67 20 74 6f 20 45 74 |d guessi|ng to Et|
|00000a10| 68 65 72 6e 65 74 20 73 | 6e 6f 6f 70 69 6e 67 2c |hernet s|nooping,|
|00000a20| 20 61 6e 64 20 74 68 65 | 20 64 61 6d 61 67 65 20 | and the| damage |
|00000a30| 63 61 75 73 65 64 0a 6d | 61 79 20 72 61 6e 67 65 |caused.m|ay range|
|00000a40| 20 66 72 6f 6d 20 66 61 | 6b 65 64 20 6d 61 69 6c | from fa|ked mail|
|00000a50| 20 6d 65 73 73 61 67 65 | 73 20 74 6f 20 64 61 74 | message|s to dat|
|00000a60| 61 20 6c 6f 73 73 20 6f | 72 20 76 69 6f 6c 61 74 |a loss o|r violat|
|00000a70| 69 6f 6e 20 6f 66 20 79 | 6f 75 72 0a 75 73 65 72 |ion of y|our.user|
|00000a80| 73 27 20 70 72 69 76 61 | 63 79 2e 20 57 65 20 77 |s' priva|cy. We w|
|00000a90| 69 6c 6c 20 6d 65 6e 74 | 69 6f 6e 20 73 6f 6d 65 |ill ment|ion some|
|00000aa0| 20 70 61 72 74 69 63 75 | 6c 61 72 20 70 72 6f 62 | particu|lar prob|
|00000ab0| 6c 65 6d 73 20 77 68 65 | 6e 20 64 69 73 63 75 73 |lems whe|n discus|
|00000ac0| 73 69 6e 67 0a 74 68 65 | 20 63 6f 6e 74 65 78 74 |sing.the| context|
|00000ad0| 20 74 68 65 79 20 6d 61 | 79 20 6f 63 63 75 72 20 | they ma|y occur |
|00000ae0| 69 6e 2c 20 61 6e 64 20 | 73 6f 6d 65 20 63 6f 6d |in, and |some com|
|00000af0| 6d 6f 6e 20 64 65 66 65 | 6e 73 65 73 20 61 67 61 |mon defe|nses aga|
|00000b00| 69 6e 73 74 20 74 68 65 | 6d 2e 0a 0a 0a 54 68 69 |inst the|m....Thi|
|00000b10| 73 20 73 65 63 74 69 6f | 6e 20 77 69 6c 6c 20 64 |s sectio|n will d|
|00000b20| 69 73 63 75 73 73 20 61 | 20 66 65 77 20 65 78 61 |iscuss a| few exa|
|00000b30| 6d 70 6c 65 73 20 61 6e | 64 20 62 61 73 69 63 20 |mples an|d basic |
|00000b40| 74 65 63 68 6e 69 71 75 | 65 73 20 69 6e 20 64 65 |techniqu|es in de|
|00000b50| 61 6c 69 6e 67 0a 77 69 | 74 68 20 73 79 73 74 65 |aling.wi|th syste|
|00000b60| 6d 20 73 65 63 75 72 69 | 74 79 2e 20 20 4f 66 20 |m securi|ty.  Of |
|00000b70| 63 6f 75 72 73 65 2c 20 | 74 68 65 20 74 6f 70 69 |course, |the topi|
|00000b80| 63 73 20 63 6f 76 65 72 | 65 64 20 63 61 6e 20 6e |cs cover|ed can n|
|00000b90| 6f 74 20 74 72 65 61 74 | 20 61 6c 6c 0a 73 65 63 |ot treat| all.sec|
|00000ba0| 75 72 69 74 79 20 69 73 | 73 75 65 73 20 79 6f 75 |urity is|sues you|
|00000bb0| 20 6d 61 79 20 62 65 20 | 66 61 63 65 64 20 77 69 | may be |faced wi|
|00000bc0| 74 68 20 65 78 68 61 75 | 73 74 69 76 65 6c 79 3b |th exhau|stively;|
|00000bd0| 20 74 68 65 79 20 6d 65 | 72 65 6c 79 20 73 65 72 | they me|rely ser|
|00000be0| 76 65 20 74 6f 0a 69 6c | 6c 75 73 74 72 61 74 65 |ve to.il|lustrate|
|00000bf0| 20 74 68 65 20 70 72 6f | 62 6c 65 6d 73 20 74 68 | the pro|blems th|
|00000c00| 61 74 20 6d 61 79 20 61 | 72 69 73 65 2e 20 20 54 |at may a|rise.  T|
|00000c10| 68 65 72 65 66 6f 72 65 | 2c 20 72 65 61 64 69 6e |herefore|, readin|
|00000c20| 67 20 61 20 67 6f 6f 64 | 20 62 6f 6f 6b 0a 6f 6e |g a good| book.on|
|00000c30| 20 73 65 63 75 72 69 74 | 79 20 69 73 20 61 6e 20 | securit|y is an |
|00000c40| 61 62 73 6f 6c 75 74 65 | 20 6d 75 73 74 2c 20 65 |absolute| must, e|
|00000c50| 73 70 65 63 69 61 6c 6c | 79 20 69 6e 20 61 20 6e |speciall|y in a n|
|00000c60| 65 74 77 6f 72 6b 65 64 | 20 73 79 73 74 65 6d 2e |etworked| system.|
|00000c70| 0a 53 69 6d 6f 6e 20 47 | 61 72 66 69 6e 6b 65 6c |.Simon G|arfinkel|
|00000c80| 27 73 20 60 60 50 72 61 | 63 74 69 63 61 6c 20 55 |'s ``Pra|ctical U|
|00000c90| 4e 49 58 20 53 65 63 75 | 72 69 74 79 27 27 20 28 |NIX Secu|rity'' (|
|00000ca0| 73 65 65 20 5c 63 69 74 | 65 7b 73 65 63 75 72 69 |see \cit|e{securi|
|00000cb0| 74 79 7d 29 20 69 73 0a | 68 69 67 68 6c 79 20 72 |ty}) is.|highly r|
|00000cc0| 65 63 6f 6d 6d 65 6e 64 | 61 62 6c 65 2e 0a 0a 0a |ecommend|able....|
|00000cd0| 54 68 65 20 73 69 6e 65 | 20 71 75 61 20 6e 6f 6e |The sine| qua non|
|00000ce0| 20 6f 66 20 73 79 73 74 | 65 6d 20 73 65 63 75 72 | of syst|em secur|
|00000cf0| 69 74 79 20 69 73 20 67 | 6f 6f 64 20 73 79 73 74 |ity is g|ood syst|
|00000d00| 65 6d 20 61 64 6d 69 6e | 69 73 74 72 61 74 69 6f |em admin|istratio|
|00000d10| 6e 2e 20 54 68 69 73 0a | 69 6e 63 6c 75 64 65 73 |n. This.|includes|
|00000d20| 20 63 68 65 63 6b 69 6e | 67 20 74 68 65 20 6f 77 | checkin|g the ow|
|00000d30| 6e 65 72 73 68 69 70 20 | 61 6e 64 20 70 65 72 6d |nership |and perm|
|00000d40| 69 73 73 69 6f 6e 73 20 | 6f 66 20 61 6c 6c 20 76 |issions |of all v|
|00000d50| 69 74 61 6c 20 66 69 6c | 65 73 20 61 6e 64 0a 64 |ital fil|es and.d|
|00000d60| 69 72 65 63 74 6f 72 69 | 65 73 2c 20 6d 6f 6e 69 |irectori|es, moni|
|00000d70| 74 6f 72 69 6e 67 20 75 | 73 65 20 6f 66 20 70 72 |toring u|se of pr|
|00000d80| 69 76 69 6c 65 67 65 64 | 20 61 63 63 6f 75 6e 74 |ivileged| account|
|00000d90| 73 2c 20 65 74 63 2e 20 | 54 68 65 20 43 4f 50 53 |s, etc. |The COPS|
|00000da0| 0a 70 72 6f 67 72 61 6d | 2c 20 66 6f 72 20 69 6e |.program|, for in|
|00000db0| 73 74 61 6e 63 65 2c 20 | 77 69 6c 6c 20 63 68 65 |stance, |will che|
|00000dc0| 63 6b 20 79 6f 75 72 20 | 66 69 6c 65 20 73 79 73 |ck your |file sys|
|00000dd0| 74 65 6d 20 61 6e 64 20 | 63 6f 6d 6d 6f 6e 0a 63 |tem and |common.c|
|00000de0| 6f 6e 66 69 67 75 72 61 | 74 69 6f 6e 20 66 69 6c |onfigura|tion fil|
|00000df0| 65 73 20 66 6f 72 20 75 | 6e 75 73 75 61 6c 20 70 |es for u|nusual p|
|00000e00| 65 72 6d 69 73 73 69 6f | 6e 73 20 6f 72 20 6f 74 |ermissio|ns or ot|
|00000e10| 68 65 72 20 61 6e 6f 6d | 61 6c 69 65 73 2e 20 49 |her anom|alies. I|
|00000e20| 74 20 69 73 0a 61 6c 73 | 6f 20 77 69 73 65 20 74 |t is.als|o wise t|
|00000e30| 6f 20 75 73 65 20 61 20 | 70 61 73 73 77 6f 72 64 |o use a |password|
|00000e40| 20 73 75 69 74 65 20 74 | 68 61 74 20 65 6e 66 6f | suite t|hat enfo|
|00000e50| 72 63 65 73 20 63 65 72 | 74 61 69 6e 20 72 75 6c |rces cer|tain rul|
|00000e60| 65 73 20 6f 6e 20 74 68 | 65 0a 75 73 65 72 73 27 |es on th|e.users'|
|00000e70| 20 70 61 73 73 77 6f 72 | 64 73 20 74 68 61 74 20 | passwor|ds that |
|00000e80| 6d 61 6b 65 20 74 68 65 | 6d 20 68 61 72 64 20 74 |make the|m hard t|
|00000e90| 6f 20 67 75 65 73 73 2e | 20 54 68 65 20 73 68 61 |o guess.| The sha|
|00000ea0| 64 6f 77 20 70 61 73 73 | 77 6f 72 64 0a 73 75 69 |dow pass|word.sui|
|00000eb0| 74 65 2c 20 66 6f 72 20 | 69 6e 73 74 61 6e 63 65 |te, for |instance|
|00000ec0| 2c 20 72 65 71 75 69 72 | 65 73 20 61 20 70 61 73 |, requir|es a pas|
|00000ed0| 73 77 6f 72 64 20 74 6f | 20 68 61 76 65 20 61 74 |sword to| have at|
|00000ee0| 20 6c 65 61 73 74 20 66 | 69 76 65 20 6c 65 74 74 | least f|ive lett|
|00000ef0| 65 72 73 2c 0a 61 6e 64 | 20 63 6f 6e 74 61 69 6e |ers,.and| contain|
|00000f00| 20 62 6f 74 68 20 75 70 | 70 65 72 20 61 6e 64 20 | both up|per and |
|00000f10| 6c 6f 77 65 72 20 63 61 | 73 65 20 6e 75 6d 62 65 |lower ca|se numbe|
|00000f20| 72 73 20 61 6e 64 20 64 | 69 67 69 74 73 2e 0a 0a |rs and d|igits...|
|00000f30| 0a 57 68 65 6e 20 6d 61 | 6b 69 6e 67 20 61 20 73 |.When ma|king a s|
|00000f40| 65 72 76 69 63 65 20 61 | 63 63 65 73 73 69 62 6c |ervice a|ccessibl|
|00000f50| 65 20 74 6f 20 74 68 65 | 20 6e 65 74 77 6f 72 6b |e to the| network|
|00000f60| 2c 20 6d 61 6b 65 20 73 | 75 72 65 20 74 6f 20 67 |, make s|ure to g|
|00000f70| 69 76 65 20 69 74 0a 60 | 60 6c 65 61 73 74 20 70 |ive it.`|`least p|
|00000f80| 72 69 76 69 6c 65 67 65 | 2c 27 27 20 6d 65 61 6e |rivilege|,'' mean|
|00000f90| 69 6e 67 20 74 68 61 74 | 20 79 6f 75 20 64 6f 6e |ing that| you don|
|00000fa0| 27 74 20 70 65 72 6d 69 | 74 20 69 74 20 74 6f 20 |'t permi|t it to |
|00000fb0| 64 6f 20 74 68 69 6e 67 | 73 20 74 68 61 74 0a 61 |do thing|s that.a|
|00000fc0| 72 65 6e 27 74 20 72 65 | 71 75 69 72 65 64 20 66 |ren't re|quired f|
|00000fd0| 6f 72 20 69 74 20 74 6f | 20 77 6f 72 6b 20 61 73 |or it to| work as|
|00000fe0| 20 64 65 73 69 67 6e 65 | 64 2e 20 46 6f 72 20 65 | designe|d. For e|
|00000ff0| 78 61 6d 70 6c 65 2c 20 | 79 6f 75 20 73 68 6f 75 |xample, |you shou|
|00001000| 6c 64 20 6d 61 6b 65 0a | 70 72 6f 67 72 61 6d 73 |ld make.|programs|
|00001010| 20 73 65 74 75 69 64 20 | 74 6f 20 5c 75 73 65 72 | setuid |to \user|
|00001020| 7b 72 6f 6f 74 7d 20 6f | 72 20 73 6f 6d 65 20 6f |{root} o|r some o|
|00001030| 74 68 65 72 20 70 72 69 | 76 69 6c 65 67 65 64 20 |ther pri|vileged |
|00001040| 61 63 63 6f 75 6e 74 20 | 6f 6e 6c 79 0a 77 68 65 |account |only.whe|
|00001050| 6e 20 74 68 65 79 20 72 | 65 61 6c 6c 79 20 6e 65 |n they r|eally ne|
|00001060| 65 64 20 74 68 69 73 2e | 20 41 6c 73 6f 2c 20 69 |ed this.| Also, i|
|00001070| 66 20 79 6f 75 20 77 61 | 6e 74 20 74 6f 20 75 73 |f you wa|nt to us|
|00001080| 65 20 61 20 73 65 72 76 | 69 63 65 20 66 6f 72 20 |e a serv|ice for |
|00001090| 6f 6e 6c 79 0a 61 20 76 | 65 72 79 20 6c 69 6d 69 |only.a v|ery limi|
|000010a0| 74 65 64 20 61 70 70 6c | 69 63 61 74 69 6f 6e 2c |ted appl|ication,|
|000010b0| 20 64 6f 6e 27 74 20 68 | 65 73 69 74 61 74 65 20 | don't h|esitate |
|000010c0| 74 6f 20 63 6f 6e 66 69 | 67 75 72 65 20 69 74 20 |to confi|gure it |
|000010d0| 61 73 0a 72 65 73 74 72 | 69 63 74 69 76 65 6c 79 |as.restr|ictively|
|000010e0| 20 61 73 20 79 6f 75 72 | 20 73 70 65 63 69 61 6c | as your| special|
|000010f0| 20 61 70 70 6c 69 63 61 | 74 69 6f 6e 20 61 6c 6c | applica|tion all|
|00001100| 6f 77 73 2e 20 46 6f 72 | 20 69 6e 73 74 61 6e 63 |ows. For| instanc|
|00001110| 65 2c 20 69 66 20 79 6f | 75 0a 77 61 6e 74 20 74 |e, if yo|u.want t|
|00001120| 6f 20 61 6c 6c 6f 77 20 | 64 69 73 6b 6c 65 73 73 |o allow |diskless|
|00001130| 20 68 6f 73 74 73 20 74 | 6f 20 62 6f 6f 74 20 66 | hosts t|o boot f|
|00001140| 72 6f 6d 20 79 6f 75 72 | 20 6d 61 63 68 69 6e 65 |rom your| machine|
|00001150| 2c 20 79 6f 75 20 6d 75 | 73 74 20 70 72 6f 76 69 |, you mu|st provi|
|00001160| 64 65 0a 74 68 65 20 54 | 46 54 50 20 28 74 72 69 |de.the T|FTP (tri|
|00001170| 76 69 61 6c 20 66 69 6c | 65 20 74 72 61 6e 73 66 |vial fil|e transf|
|00001180| 65 72 20 73 65 72 76 69 | 63 65 29 20 73 6f 20 74 |er servi|ce) so t|
|00001190| 68 61 74 20 74 68 65 79 | 20 63 61 6e 20 64 6f 77 |hat they| can dow|
|000011a0| 6e 6c 6f 61 64 20 62 61 | 73 69 63 0a 63 6f 6e 66 |nload ba|sic.conf|
|000011b0| 69 67 75 72 61 74 69 6f | 6e 20 66 69 6c 65 73 20 |iguratio|n files |
|000011c0| 66 72 6f 6d 20 74 68 65 | 20 5c 66 69 6c 65 7b 2f |from the| \file{/|
|000011d0| 62 6f 6f 74 7d 20 64 69 | 72 65 63 74 6f 72 79 2e |boot} di|rectory.|
|000011e0| 20 48 6f 77 65 76 65 72 | 2c 20 77 68 65 6e 20 75 | However|, when u|
|000011f0| 73 65 64 0a 75 6e 72 65 | 73 74 72 69 63 74 65 64 |sed.unre|stricted|
|00001200| 2c 20 54 46 54 50 20 61 | 6c 6c 6f 77 73 20 61 6e |, TFTP a|llows an|
|00001210| 79 20 75 73 65 72 20 61 | 6e 79 77 68 65 72 65 20 |y user a|nywhere |
|00001220| 69 6e 20 74 68 65 20 77 | 6f 72 6c 64 20 74 6f 20 |in the w|orld to |
|00001230| 64 6f 77 6e 6c 6f 61 64 | 20 61 6e 79 0a 70 75 62 |download| any.pub|
|00001240| 6c 69 63 6c 79 20 61 63 | 63 65 73 73 69 62 6c 65 |licly ac|cessible|
|00001250| 20 66 69 6c 65 20 66 72 | 6f 6d 20 79 6f 75 72 20 | file fr|om your |
|00001260| 73 79 73 74 65 6d 2e 20 | 49 66 20 74 68 69 73 20 |system. |If this |
|00001270| 69 73 20 6e 6f 74 20 77 | 68 61 74 20 79 6f 75 20 |is not w|hat you |
|00001280| 77 61 6e 74 2c 0a 77 68 | 79 20 6e 6f 74 20 72 65 |want,.wh|y not re|
|00001290| 73 74 72 69 63 74 20 54 | 46 54 50 20 73 65 72 76 |strict T|FTP serv|
|000012a0| 69 63 65 20 74 6f 20 74 | 68 65 20 5c 66 69 6c 65 |ice to t|he \file|
|000012b0| 7b 2f 62 6f 6f 74 7d 20 | 64 69 72 65 63 74 6f 72 |{/boot} |director|
|000012c0| 79 3f 5c 66 6f 6f 74 6e | 6f 74 65 7b 0a 20 57 65 |y?\footn|ote{. We|
|000012d0| 20 77 69 6c 6c 20 63 6f | 6d 65 20 62 61 63 6b 20 | will co|me back |
|000012e0| 74 6f 20 74 68 69 73 20 | 69 6e 20 63 68 61 70 74 |to this |in chapt|
|000012f0| 65 72 7e 5c 72 65 66 7b | 61 70 70 6c 7d 2e 0a 7d |er~\ref{|appl}..}|
|00001300| 0a 0a 0a 41 6c 6f 6e 67 | 20 74 68 65 20 73 61 6d |...Along| the sam|
|00001310| 65 20 6c 69 6e 65 20 6f | 66 20 74 68 6f 75 67 68 |e line o|f though|
|00001320| 74 2c 20 79 6f 75 20 6d | 69 67 68 74 20 77 61 6e |t, you m|ight wan|
|00001330| 74 20 74 6f 20 72 65 73 | 74 72 69 63 74 20 63 65 |t to res|trict ce|
|00001340| 72 74 61 69 6e 0a 73 65 | 72 76 69 63 65 73 20 74 |rtain.se|rvices t|
|00001350| 6f 20 75 73 65 72 73 20 | 66 72 6f 6d 20 63 65 72 |o users |from cer|
|00001360| 74 61 69 6e 20 68 6f 73 | 74 73 2c 20 73 61 79 20 |tain hos|ts, say |
|00001370| 66 72 6f 6d 20 79 6f 75 | 72 20 6c 6f 63 61 6c 20 |from you|r local |
|00001380| 6e 65 74 77 6f 72 6b 2e | 20 0a 49 6e 20 63 68 61 |network.| .In cha|
|00001390| 70 74 65 72 7e 5c 72 65 | 66 7b 61 70 70 6c 7d 2c |pter~\re|f{appl},|
|000013a0| 20 77 65 20 69 6e 74 72 | 6f 64 75 63 65 20 5c 70 | we intr|oduce \p|
|000013b0| 72 6f 67 7b 74 63 70 64 | 7d 20 77 68 69 63 68 20 |rog{tcpd|} which |
|000013c0| 64 6f 65 73 20 74 68 69 | 73 20 66 6f 72 0a 61 20 |does thi|s for.a |
|000013d0| 76 61 72 69 65 74 79 20 | 6f 66 20 6e 65 74 77 6f |variety |of netwo|
|000013e0| 72 6b 20 61 70 70 6c 69 | 63 61 74 69 6f 6e 73 2e |rk appli|cations.|
|000013f0| 0a 0a 0a 41 6e 6f 74 68 | 65 72 20 69 6d 70 6f 72 |...Anoth|er impor|
|00001400| 74 61 6e 74 20 70 6f 69 | 6e 74 20 69 73 20 74 6f |tant poi|nt is to|
|00001410| 20 61 76 6f 69 64 20 60 | 60 64 61 6e 67 65 72 6f | avoid `|`dangero|
|00001420| 75 73 27 27 20 73 6f 66 | 74 77 61 72 65 2e 20 4f |us'' sof|tware. O|
|00001430| 66 20 63 6f 75 72 73 65 | 2c 0a 61 6e 79 20 73 6f |f course|,.any so|
|00001440| 66 74 77 61 72 65 20 79 | 6f 75 20 75 73 65 20 6d |ftware y|ou use m|
|00001450| 61 79 20 62 65 20 64 61 | 6e 67 65 72 6f 75 73 2c |ay be da|ngerous,|
|00001460| 20 62 65 63 61 75 73 65 | 20 73 6f 66 74 77 61 72 | because| softwar|
|00001470| 65 20 6d 61 79 20 68 61 | 76 65 20 62 75 67 73 0a |e may ha|ve bugs.|
|00001480| 74 68 61 74 20 63 6c 65 | 76 65 72 20 70 65 6f 70 |that cle|ver peop|
|00001490| 6c 65 20 6d 69 67 68 74 | 20 65 78 70 6c 6f 69 74 |le might| exploit|
|000014a0| 20 74 6f 20 67 61 69 6e | 20 61 63 63 65 73 73 20 | to gain| access |
|000014b0| 74 6f 20 79 6f 75 72 20 | 73 79 73 74 65 6d 2e 20 |to your |system. |
|000014c0| 54 68 69 6e 67 73 0a 6c | 69 6b 65 20 74 68 65 73 |Things.l|ike thes|
|000014d0| 65 20 68 61 70 70 65 6e | 2c 20 61 6e 64 20 74 68 |e happen|, and th|
|000014e0| 65 72 65 27 73 20 6e 6f | 20 63 6f 6d 70 6c 65 74 |ere's no| complet|
|000014f0| 65 20 70 72 6f 74 65 63 | 74 69 6f 6e 20 61 67 61 |e protec|tion aga|
|00001500| 69 6e 73 74 20 74 68 69 | 73 2e 0a 54 68 69 73 20 |inst thi|s..This |
|00001510| 70 72 6f 62 6c 65 6d 20 | 61 66 66 65 63 74 73 20 |problem |affects |
|00001520| 66 72 65 65 20 73 6f 66 | 74 77 61 72 65 20 61 6e |free sof|tware an|
|00001530| 64 20 63 6f 6d 6d 65 72 | 63 69 61 6c 20 70 72 6f |d commer|cial pro|
|00001540| 64 75 63 74 73 0a 61 6c | 69 6b 65 2e 5c 66 6f 6f |ducts.al|ike.\foo|
|00001550| 74 6e 6f 74 65 7b 0a 20 | 54 68 65 72 65 20 68 61 |tnote{. |There ha|
|00001560| 76 65 20 62 65 65 6e 20 | 63 6f 6d 6d 65 72 63 69 |ve been |commerci|
|00001570| 61 6c 20 5c 75 6e 69 63 | 65 73 7b 7d 20 79 6f 75 |al \unic|es{} you|
|00001580| 20 68 61 76 65 20 74 6f | 20 70 61 79 20 6c 6f 74 | have to| pay lot|
|00001590| 73 20 6f 66 20 6d 6f 6e | 65 79 20 66 6f 72 0a 20 |s of mon|ey for. |
|000015a0| 74 68 61 74 20 63 61 6d | 65 20 77 69 74 68 20 61 |that cam|e with a|
|000015b0| 20 73 65 74 75 69 64 2d | 5c 75 73 65 72 7b 72 6f | setuid-|\user{ro|
|000015c0| 6f 74 7d 20 73 68 65 6c | 6c 20 73 63 72 69 70 74 |ot} shel|l script|
|000015d0| 20 77 68 69 63 68 20 61 | 6c 6c 6f 77 65 64 20 75 | which a|llowed u|
|000015e0| 73 65 72 73 20 74 6f 0a | 20 67 61 69 6e 20 5c 75 |sers to.| gain \u|
|000015f0| 73 65 72 7b 72 6f 6f 74 | 7d 20 70 72 69 76 69 6c |ser{root|} privil|
|00001600| 65 67 65 20 75 73 69 6e | 67 20 61 20 73 69 6d 70 |ege usin|g a simp|
|00001610| 6c 65 20 73 74 61 6e 64 | 61 72 64 20 74 72 69 63 |le stand|ard tric|
|00001620| 6b 2e 0a 7d 20 48 6f 77 | 65 76 65 72 2c 20 70 72 |k..} How|ever, pr|
|00001630| 6f 67 72 61 6d 73 20 74 | 68 61 74 20 72 65 71 75 |ograms t|hat requ|
|00001640| 69 72 65 20 73 70 65 63 | 69 61 6c 20 70 72 69 76 |ire spec|ial priv|
|00001650| 69 6c 65 67 65 20 61 72 | 65 20 69 6e 68 65 72 65 |ilege ar|e inhere|
|00001660| 6e 74 6c 79 20 6d 6f 72 | 65 0a 64 61 6e 67 65 72 |ntly mor|e.danger|
|00001670| 6f 75 73 20 74 68 61 6e | 20 6f 74 68 65 72 73 2c |ous than| others,|
|00001680| 20 62 65 63 61 75 73 65 | 20 61 6e 79 20 6c 6f 6f | because| any loo|
|00001690| 70 68 6f 6c 65 20 63 61 | 6e 20 68 61 76 65 20 64 |phole ca|n have d|
|000016a0| 72 61 73 74 69 63 0a 63 | 6f 6e 73 65 71 75 65 6e |rastic.c|onsequen|
|000016b0| 63 65 73 2e 5c 66 6f 6f | 74 6e 6f 74 65 7b 0a 20 |ces.\foo|tnote{. |
|000016c0| 49 6e 20 31 39 38 38 2c | 20 74 68 65 20 52 54 4d |In 1988,| the RTM|
|000016d0| 20 77 6f 72 6d 20 62 72 | 6f 75 67 68 74 20 6d 75 | worm br|ought mu|
|000016e0| 63 68 20 6f 66 20 74 68 | 65 20 49 6e 74 65 72 6e |ch of th|e Intern|
|000016f0| 65 74 20 74 6f 20 61 20 | 67 72 69 6e 64 69 6e 67 |et to a |grinding|
|00001700| 20 68 61 6c 74 2c 0a 20 | 70 61 72 74 6c 79 20 62 | halt,. |partly b|
|00001710| 79 20 65 78 70 6c 6f 69 | 74 69 6e 67 20 61 20 67 |y exploi|ting a g|
|00001720| 61 70 69 6e 67 20 68 6f | 6c 65 20 69 6e 20 73 6f |aping ho|le in so|
|00001730| 6d 65 20 5c 70 72 6f 67 | 7b 73 65 6e 64 6d 61 69 |me \prog|{sendmai|
|00001740| 6c 7d 20 70 72 6f 67 72 | 61 6d 73 2e 0a 20 4f 66 |l} progr|ams.. Of|
|00001750| 20 63 6f 75 72 73 65 2c | 20 74 68 69 73 20 68 6f | course,| this ho|
|00001760| 6c 65 20 68 61 73 20 6c | 6f 6e 67 20 62 65 65 6e |le has l|ong been|
|00001770| 20 66 69 78 65 64 20 73 | 69 6e 63 65 2e 0a 7d 20 | fixed s|ince..} |
|00001780| 49 66 20 79 6f 75 20 69 | 6e 73 74 61 6c 6c 20 61 |If you i|nstall a|
|00001790| 20 73 65 74 75 69 64 20 | 70 72 6f 67 72 61 6d 20 | setuid |program |
|000017a0| 66 6f 72 20 6e 65 74 77 | 6f 72 6b 20 70 75 72 70 |for netw|ork purp|
|000017b0| 6f 73 65 73 20 62 65 20 | 64 6f 75 62 6c 79 20 63 |oses be |doubly c|
|000017c0| 61 72 65 66 75 6c 0a 74 | 68 61 74 20 79 6f 75 20 |areful.t|hat you |
|000017d0| 64 6f 6e 27 74 20 6d 69 | 73 73 20 61 6e 79 74 68 |don't mi|ss anyth|
|000017e0| 69 6e 67 20 66 72 6f 6d | 20 74 68 65 20 64 6f 63 |ing from| the doc|
|000017f0| 75 6d 65 6e 74 61 74 69 | 6f 6e 2c 20 73 6f 20 74 |umentati|on, so t|
|00001800| 68 61 74 20 79 6f 75 20 | 64 6f 6e 27 74 0a 63 72 |hat you |don't.cr|
|00001810| 65 61 74 65 20 61 20 73 | 65 63 75 72 69 74 79 20 |eate a s|ecurity |
|00001820| 62 72 65 61 63 68 20 62 | 79 20 61 63 63 69 64 65 |breach b|y accide|
|00001830| 6e 74 2e 0a 0a 0a 55 6e | 64 65 72 20 77 6f 72 73 |nt....Un|der wors|
|00001840| 74 20 63 69 72 63 75 6d | 73 74 61 6e 63 65 73 2c |t circum|stances,|
|00001850| 20 61 6c 6c 20 70 72 65 | 63 61 75 74 69 6f 6e 73 | all pre|cautions|
|00001860| 20 6d 69 67 68 74 20 66 | 61 69 6c 2e 20 59 6f 75 | might f|ail. You|
|00001870| 20 73 68 6f 75 6c 64 0a | 74 68 65 72 65 66 6f 72 | should.|therefor|
|00001880| 65 20 6d 61 6b 65 20 73 | 75 72 65 20 79 6f 75 20 |e make s|ure you |
|00001890| 64 65 74 65 63 74 20 69 | 6e 74 72 75 64 65 72 73 |detect i|ntruders|
|000018a0| 20 65 61 72 6c 79 2e 20 | 43 68 65 63 6b 69 6e 67 | early. |Checking|
|000018b0| 20 74 68 65 20 73 79 73 | 74 65 6d 0a 6c 6f 67 20 | the sys|tem.log |
|000018c0| 66 69 6c 65 73 20 69 73 | 20 61 20 67 6f 6f 64 20 |files is| a good |
|000018d0| 73 74 61 72 74 69 6e 67 | 20 70 6f 69 6e 74 2c 20 |starting| point, |
|000018e0| 62 75 74 20 74 68 65 20 | 69 6e 74 72 75 64 65 72 |but the |intruder|
|000018f0| 20 69 73 20 70 72 6f 62 | 61 62 6c 79 20 61 73 0a | is prob|ably as.|
|00001900| 63 6c 65 76 65 72 2c 20 | 61 6e 64 20 77 69 6c 6c |clever, |and will|
|00001910| 20 64 65 6c 65 74 65 20 | 61 6e 79 20 6f 62 76 69 | delete |any obvi|
|00001920| 6f 75 73 20 74 72 61 63 | 65 73 20 68 65 20 6f 72 |ous trac|es he or|
|00001930| 20 73 68 65 20 6c 65 66 | 74 2e 20 48 6f 77 65 76 | she lef|t. Howev|
|00001940| 65 72 2c 0a 74 68 65 72 | 65 20 61 72 65 20 74 6f |er,.ther|e are to|
|00001950| 6f 6c 73 20 6c 69 6b 65 | 20 5c 70 72 6f 67 7b 74 |ols like| \prog{t|
|00001960| 72 69 70 77 69 72 65 7d | 5c 66 6f 6f 74 6e 6f 74 |ripwire}|\footnot|
|00001970| 65 7b 0a 20 57 72 69 74 | 74 65 6e 20 62 79 20 47 |e{. Writ|ten by G|
|00001980| 65 6e 65 20 4b 69 6d 20 | 61 6e 64 20 47 65 6e 65 |ene Kim |and Gene|
|00001990| 20 53 70 61 66 66 6f 72 | 64 2e 0a 7d 20 74 68 61 | Spaffor|d..} tha|
|000019a0| 74 20 61 6c 6c 6f 77 20 | 79 6f 75 20 74 6f 20 63 |t allow |you to c|
|000019b0| 68 65 63 6b 20 76 69 74 | 61 6c 20 73 79 73 74 65 |heck vit|al syste|
|000019c0| 6d 20 66 69 6c 65 73 20 | 74 6f 20 73 65 65 20 69 |m files |to see i|
|000019d0| 66 20 74 68 65 69 72 20 | 63 6f 6e 74 65 6e 74 73 |f their |contents|
|000019e0| 20 6f 72 0a 70 65 72 6d | 69 73 73 69 6f 6e 73 20 | or.perm|issions |
|000019f0| 68 61 76 65 20 62 65 65 | 6e 20 63 68 61 6e 67 65 |have bee|n change|
|00001a00| 64 2e 20 20 5c 70 72 6f | 67 7b 74 72 69 70 77 69 |d.  \pro|g{tripwi|
|00001a10| 72 65 7d 20 63 6f 6d 70 | 75 74 65 73 20 76 61 72 |re} comp|utes var|
|00001a20| 69 6f 75 73 20 73 74 72 | 6f 6e 67 0a 63 68 65 63 |ious str|ong.chec|
|00001a30| 6b 73 75 6d 73 20 6f 76 | 65 72 20 74 68 65 73 65 |ksums ov|er these|
|00001a40| 20 66 69 6c 65 73 20 61 | 6e 64 20 73 74 6f 72 65 | files a|nd store|
|00001a50| 73 20 74 68 65 6d 20 69 | 6e 20 61 20 64 61 74 61 |s them i|n a data|
|00001a60| 62 61 73 65 2e 20 20 41 | 74 20 61 20 6c 61 74 65 |base.  A|t a late|
|00001a70| 72 0a 72 75 6e 2c 20 6e | 65 77 20 63 68 65 63 6b |r.run, n|ew check|
|00001a80| 73 75 6d 73 20 61 72 65 | 20 63 6f 6d 70 75 74 65 |sums are| compute|
|00001a90| 64 20 61 6e 64 20 63 6f | 6d 70 61 72 65 64 20 74 |d and co|mpared t|
|00001aa0| 6f 20 74 68 65 20 73 74 | 6f 72 65 64 20 6f 6e 65 |o the st|ored one|
|00001ab0| 73 20 74 6f 0a 64 65 74 | 65 63 74 20 61 6e 79 20 |s to.det|ect any |
|00001ac0| 6d 6f 64 69 66 69 63 61 | 74 69 6f 6e 73 2e 0a 0a |modifica|tions...|
|00001ad0| 0a                      |                         |.       |        |
+--------+-------------------------+-------------------------+--------+--------+