Defining a TCB
richard offer
offer at sgi.com
Thu Apr 20 17:08:19 GMT 2000
[BCC'ing The SGI Trust Technology Group]
I'd like (if I may) to start a discussion about defining a TCB.
This seems like the most appropriate place even thought I'm working on Linux
not BSD, there seems enough common source (at the application level) and we
both have similiar goals that it makes sense (at least) to me, you may think
different in which case I'm sorry in advance.
First I think we need to work out what the market is. I see three primary uses
for a trusted system
1. single use server (web/ftp/mail)
2. generic server.
3. workstation (with X).
What sort of tools would you expect each to comprise of ?
I have a list that I'm using for my analysis, it comprises ~300 security
"intersting" (either security enforcing or relevent) programs. As I have to
analyize each of these, the fewer the better, but have I accidently missed
anything obvious out ? [ I have intentionally missed out a MTA, a web server
and the development system, I do want these, I just want to be able to get
something out in a reasonable timeframe]
The 300 security "interesting" programs (and another ~300 security "boring"
programs) is about the minimum I reckon you need for a useful multi-user
networked machine, so its somewhere between 1 and 2 in functionality.
For a workstation, one obviously needs a trusted X, that, I'm currently leaving
on the back boiler, since we don't have the underlying infrastructure
(MAC/TSIX) in place yet....
As this is a WIP I expect there are mislabeled programs.
What I'd eventually like to do is get my analysis documentation out for
widerspread comments (probably via CVS), is this something that enough people
would be interested in for me to spend my time pursuing it with my management ?
The docs are currently in SGML (DocBook DTD)
Thanks,
richard.
Security Interesting
====================
bin/bash
bin/chgrp
bin/chmod
bin/chown
bin/consolechars
bin/cp
bin/cpio
bin/date
bin/dd
bin/df
bin/dmesg
bin/hostname
bin/kill
bin/ln
bin/loadkeys
bin/login
bin/ls
bin/mkdir
bin/mknod
bin/more
bin/mount
bin/mv
bin/netstat
bin/nice
bin/ps
bin/rm
bin/rmdir
bin/rpm
bin/setserial
bin/su
bin/touch
bin/umount
lib/ld.so
sbin/agetty
sbin/arp
sbin/badblocks
sbin/cfdisk
sbin/chkconfig
sbin/ctrlaltdel
sbin/debugfs
sbin/depmod
sbin/dumpe2fs
sbin/e2fsck
sbin/e2label
sbin/fdisk
sbin/fsck.ext2
sbin/fsck.minix
sbin/fsck
sbin/fuser
sbin/genksyms
sbin/getkey
sbin/getty
sbin/halt
sbin/hdparm
sbin/hwclock
sbin/ifconfig
sbin/init
sbin/initlog
sbin/insmod.static
sbin/insmod
sbin/install-info
sbin/ipmaddr
sbin/iptunnel
sbin/isapnp
sbin/kbdrate
sbin/kerneld
sbin/killall5
sbin/klogd
sbin/ksyms
sbin/ldconfig
sbin/lilo
sbin/loglevel
sbin/lsmod
sbin/lspci
sbin/mingetty
sbin/minilogd
sbin/mke2fs
sbin/mkfs.ext2
sbin/mkfs.minix
sbin/mkfs
sbin/mkswap
sbin/modinfo
sbin/modprobe
sbin/netreport
sbin/pam_tally
sbin/plipconfig
sbin/pnpdump
sbin/ppp-watch
sbin/pump
sbin/pwdb_chkpwd
sbin/quotacheck
sbin/quotaon
sbin/rarp
sbin/rmmod.static
sbin/rmmod
sbin/rmt
sbin/route
sbin/sash
sbin/setpci
sbin/sfdisk
sbin/shutdown
sbin/slattach
sbin/sln
sbin/sulogin
sbin/swapon
sbin/sysctl
sbin/syslogd
sbin/tune2fs
sbin/unix_chkpwd
sbin/update
sbin/uugetty
sbinpam/upperLOWER
usrbin/at
usrbin/cal
usrbin/chage
usrbin/chattr
usrbin/chfn
usrbin/chsh
usrbin/col
usrbin/colcrt
usrbin/colrm
usrbin/column
usrbin/crontab
usrbin/cytune
usrbin/db_archive
usrbin/db_checkpoint
usrbin/db_deadlock
usrbin/db_dump
usrbin/db_dump185
usrbin/db_load
usrbin/db_printlog
usrbin/db_recover
usrbin/db_stat
usrbin/ddate
usrbin/dir
usrbin/dircolors
usrbin/disable-paste
usrbin/du
usrbin/eject
usrbin/env
usrbin/faillog
usrbin/fdformat
usrbin/file
usrbin/find
usrbin/free
usrbin/getconf
usrbin/getent
usrbin/getopt
usrbin/gpasswd
usrbin/gpm-root
usrbin/hexdump
usrbin/hltest
usrbin/hostid
usrbin/id
usrbin/install
usrbin/ipcrm
usrbin/ipcs
usrbin/killall
usrbin/last
usrbin/lastlog
usrbin/lddlibc4
usrbin/locale
usrbin/logger
usrbin/look
usrbin/lsattr
usrbin/makedb
usrbin/man
usrbin/man2html
usrbin/mcookie
usrbin/md5sum
usrbin/mev
usrbin/mkfifo
usrbin/mouse-test
usrbin/namei
usrbin/newgrp
usrbin/oldps
usrbin/passwd
usrbin/pinky
usrbin/printenv
usrbin/printf
usrbin/pstree
usrbin/quota
usrbin/raw
usrbin/renice
usrbin/rev
usrbin/rsync
usrbin/script
usrbin/seq
usrbin/setfdprm
usrbin/setsid
usrbin/setterm
usrbin/skill
usrbin/snice
usrbin/sprof
usrbin/suidperl
usrbin/tload
usrbin/top
usrbin/tsort
usrbin/ul
usrbin/users
usrbin/utmpdump
usrbin/uuidgen
usrbin/vdir
usrbin/vmstat
usrbin/w
usrbin/wall
usrbin/watch
usrbin/whereis
usrbin/who
usrbin/write
usrsbin/authconfig
usrsbin/chpasswd
usrsbin/chroot
usrsbin/crond
usrsbin/edquota
usrsbin/gpm
usrsbin/groupadd
usrsbin/groupdel
usrsbin/groupmod
usrsbin/grpck
usrsbin/grpconv
usrsbin/grpunconv
usrsbin/inetd
usrsbin/kbdconfig
usrsbin/kudzu
usrsbin/logrotate
usrsbin/mkpasswd
usrsbin/mouseconfig
usrsbin/netconfig
usrsbin/newusers
usrsbin/ntsysv
usrsbin/packer
usrsbin/pwck
usrsbin/pwconv
usrsbin/pwunconv
usrsbin/quotastats
usrsbin/ramsize
usrsbin/rdev
usrsbin/readprofile
usrsbin/repquota
usrsbin/rootflags
usrsbin/rpcinfo
usrsbin/safe_finger
usrsbin/setup
usrsbin/swapdev
usrsbin/tcpd
usrsbin/tcpdchk
usrsbin/tcpdmatch
usrsbin/timeconfig
usrsbin/tmpwatch
usrsbin/try-from
usrsbin/tunelp
usrsbin/useradd
usrsbin/userdel
usrsbin/usermod
usrsbin/utmpd
usrsbin/vidmode
usrsbin/vigr
usrsbin/vipw
usrsbin/warnquota
usrsbin/zic
Security Boring
===============
[sorry for the change in name format, these have yet to make it from the master
list into the TCB documentation dir.]
bin/arch
bin/awk
bin/basename
bin/cat
bin/csh
bin/dmesg
bin/dnsdomainname
bin/doexec
bin/echo
bin/ed
bin/egrep
bin/ex
bin/false
bin/fgrep
bin/gawk
bin/grep
bin/gtar
bin/gunzip
bin/gzip
bin/igawk
bin/ipcalc
bin/mktemp
bin/more
bin/mt
bin/ping
bin/pwd
bin/red
bin/rvi
bin/rview
bin/sed
bin/sleep
bin/sort
bin/stty
bin/sync
bin/tar
bin/tcsh
bin/true
bin/uname
bin/usleep
bin/vi
bin/view
bin/vimtutor
bin/zcat
etc/fdprm
etc/logrotate.d/cron
etc/termcap
etc/X11/wmconfig/top
sbin/runlevel
sbin/setsysfont
sbin/stinit
usr/bin/[
usr/bin/a2p
usr/bin/addftinfo
usr/bin/afmtodit
usr/bin/awk
usr/bin/bunzip2
usr/bin/bzcat
usr/bin/bzip2
usr/bin/bzip2recover
usr/bin/bzless
usr/bin/c2ph
usr/bin/cal
usr/bin/captoinfo
usr/bin/charset
usr/bin/chvt
usr/bin/cksum
usr/bin/clear
usr/bin/cmp
usr/bin/codepage
usr/bin/col
usr/bin/colcrt
usr/bin/colrm
usr/bin/column
usr/bin/comm
usr/bin/compress
usr/bin/csplit
usr/bin/cut
usr/bin/ddate
usr/bin/deallocvt
usr/bin/diff
usr/bin/diff3
usr/bin/dirname
usr/bin/dumpkeys
usr/bin/eqn
usr/bin/expand
usr/bin/expr
usr/bin/factor
usr/bin/fgconsole
usr/bin/find2perl
usr/bin/fix_bs_and_del
usr/bin/fmt
usr/bin/fold
usr/bin/gawk
usr/bin/gencat
usr/bin/gendiff
usr/bin/geqn
usr/bin/getkeycodes
usr/bin/getopt
usr/bin/gindxbib
usr/bin/glookbib
usr/bin/gneqn
usr/bin/gnroff
usr/bin/gpic
usr/bin/grefer
usr/bin/grodvi
usr/bin/groff
usr/bin/grog
usr/bin/grolj4
usr/bin/grops
usr/bin/grotty
usr/bin/groups
usr/bin/gsoelim
usr/bin/gtbl
usr/bin/gtroff
usr/bin/gunzip
usr/bin/gzexe
usr/bin/gzip
usr/bin/h2ph
usr/bin/h2xs
usr/bin/head
usr/bin/hexdump
usr/bin/hpftodit
usr/bin/iconv
usr/bin/indxbib
usr/bin/info
usr/bin/infocmp
usr/bin/infotocap
usr/bin/join
usr/bin/kbd_mode
usr/bin/kbdrate
usr/bin/less
usr/bin/lessecho
usr/bin/lesskey
usr/bin/lkbib
usr/bin/loadkeys
usr/bin/loadunimap
usr/bin/localedef
usr/bin/logname
usr/bin/look
usr/bin/lookbib
usr/bin/manpath
usr/bin/mapscrn
usr/bin/mesg
usr/bin/mk_modmap
usr/bin/namei
usr/bin/neqn
usr/bin/nl
usr/bin/nohup
usr/bin/nroff
usr/bin/od
usr/bin/paste
usr/bin/pathchk
usr/bin/perl
usr/bin/perl5.00503
usr/bin/perlbug
usr/bin/perlcc
usr/bin/perldoc
usr/bin/pfbtops
usr/bin/pic
usr/bin/pl2pm
usr/bin/pod2html
usr/bin/pod2latex
usr/bin/pod2man
usr/bin/pod2text
usr/bin/pr
usr/bin/psbb
usr/bin/psfaddtable
usr/bin/psfgettable
usr/bin/psfstriptable
usr/bin/pstruct
usr/bin/ptx
usr/bin/raw
usr/bin/refer
usr/bin/reset
usr/bin/resizecons
usr/bin/rev
usr/bin/rpcgen
usr/bin/rpm2cpio
usr/bin/s2p
usr/bin/saveunimap
usr/bin/screendump
usr/bin/script
usr/bin/sdiff
usr/bin/setfont
usr/bin/setkeycodes
usr/bin/setleds
usr/bin/setmetamode
usr/bin/setterm
usr/bin/setvesablank
usr/bin/showcfont
usr/bin/showkey
usr/bin/soelim
usr/bin/splain
usr/bin/split
usr/bin/stat
usr/bin/sum
usr/bin/tac
usr/bin/tail
usr/bin/tbl
usr/bin/tee
usr/bin/test
usr/bin/tfmtodit
usr/bin/tic
usr/bin/time
usr/bin/toe
usr/bin/tput
usr/bin/tr
usr/bin/troff
usr/bin/tset
usr/bin/tsort
usr/bin/tty
usr/bin/tzselect
usr/bin/ul
usr/bin/uncompress
usr/bin/unexpand
usr/bin/unicode_start
usr/bin/unicode_stop
usr/bin/uniq
usr/bin/uptime
usr/bin/vcstime
usr/bin/vt-is-UTF8
usr/bin/wc
usr/bin/whereis
usr/bin/which
usr/bin/whiptail
usr/bin/whoami
usr/bin/writevt
usr/bin/xargs
usr/bin/xxd
usr/bin/yes
usr/bin/zcmp
usr/bin/zdiff
usr/bin/zforce
usr/bin/zgrep
usr/bin/zless
usr/bin/zmore
usr/bin/znew
usr/games/banner
usr/info/dir
usr/libexec/awk/grcat
usr/libexec/awk/pwcat
usr/lib/rpm/config.guess
usr/lib/rpm/config.sub
usr/lib/rpm/convertrpmrc.sh
usr/lib/rpm/find-lang.sh
usr/lib/rpm/find-provides
usr/lib/rpm/find-requires
usr/lib/rpm/freshen.sh
usr/lib/rpm/getpo.sh
usr/lib/rpm/macros
usr/lib/rpm/mkinstalldirs
usr/lib/rpm/perl.prov
usr/lib/rpm/perl.req
usr/lib/rpm/rpmgettext
usr/lib/rpm/rpmpopt
usr/lib/rpm/rpmputtext
usr/lib/rpm/rpmrc
usr/lib/rpm/vpkg-provides.sh
usr/sbin/atd
usr/sbin/atrun
usr/sbin/mklost+found
usr/sbin/usernetctl
usr/sbin/zdump
-----------------------------------------------------------------------
Richard Offer Widget FAQ --> http://reality.sgi.com/widgetFAQ
MTS-Core Design (Motif)
___________________________________________http://reality.sgi.com/offer
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-discuss" in the body of the message
More information about the trustedbsd-discuss
mailing list