Security Hardening: Removing Permissions; Suggestions
APseudoUtopia
apseudoutopia at gmail.com
Thu Jan 7 19:09:54 UTC 2010
Hey list,
I'm working on a shell script that basically removes the group and the
other permissions from certain files to harden my system. Right now,
the only files I'm doing this on is the GCC compiler collection. I'm
asking for suggestions on other files that these permissions can be
removed from in order to help further secure the system (a headless db
and web server).
$CHMOD o=,g= /usr/bin/cc
$CHMOD o=,g= /usr/bin/cpp
$CHMOD o=,g= /usr/bin/gcov
$CHMOD o=,g= /usr/bin/ld
$CHMOD o=,g= /usr/bin/gdb
$CHMOD o=,g= /usr/bin/c++
Thanks!
More information about the freebsd-questions
mailing list