Re: [MLUG] SuSE

Email address obfuscation in effect -- please click here to turn it off.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: MLUG Members <EMAIL:PROTECTED>
Subject: Re: [MLUG] SuSE
From: John Engelbrecht <EMAIL:PROTECTED>
Date: Sun, 3 Aug 2003 22:02:50 -0500 (CDT)
In-reply-to: <EMAIL:PROTECTED>
List-archive: <http://mlug.missouri.edu/pipermail/members>
List-help: <mailto:EMAIL:PROTECTED>
List-id: MLUG Members <members.mlug.missouri.edu>
List-post: <mailto:EMAIL:PROTECTED>
List-subscribe: <http://mlug.missouri.edu/mailman/listinfo/members>,<mailto:EMAIL:PROTECTED>
List-unsubscribe: <http://mlug.missouri.edu/mailman/listinfo/members>,<mailto:EMAIL:PROTECTED>
References: <EMAIL:PROTECTED><EMAIL:PROTECTED>
Reply-to: MLUG Members <EMAIL:PROTECTED>
Sender: EMAIL:PROTECTED

If you are afraid of rooting exploits,
you can lock down bash and sh by adding the
following in /etc/profile.d/uidcheck.sh

#!/bin/sh
if [ $UID == 0 ]; then
   if [[ $USER != "root" &&
         $USER != "jengelbr" &&
         $USER != "blah" ]]; then
      exit
   fi
fi
That will exit the user if they are not any of the users in that
statement.

That and edit /etc/login.defs and change SU_WHEEL_ONLY line to
SU_WHEEL_ONLY   yes

then the only users that can use the "su" command are the ones
in the "wheel" or "root" group.



On Sun, 3 Aug 2003, Chad Whiting wrote:

> On Sunday 03 August 2003 08:38 pm, Matt Ross wrote:
> > My $.02 on the matter is that Slackware lacked the pretty graphics, but all
> > in all was just as easy to use as Mandrake (not tried RH myself), while
> > SuSE was harder in the fact that you had to know which pieces you did and
> > did not want installed. I will concede that I never got slack to recognize
> > my PCMCIA eithernet card, but that was a driver issue, the OS worked fine
> > without any more thinking required than other distros.
>
> Slackware lacks the graphics because Patrick tries to keep it simple, the
> extra graphics SuSE throws in uses up RAM/Swap and is simply a waste of
> electricity. I mean seriously who needs a geko and a blue screen on your
> tty1? Slackware is easy to use if you don't care how secure your system is.
> Then again so is any distro/OS. One thing about Slack is you hafta lock it
> down, make sure you disable all services you don't absolutely need running
> and write a good iptables script. Another thing that's nice is you're totally
> in control of everything and it's not automated like SuSE. SuSE is nice but
> it's so similiar to windoze it's frightening. It forces you to accept a ton
> of programs you don't need, taking up disk space and just plain being
> annoying. Not to mention you hardly know what's going on and how can you
> really know if you're running a secure box when you use the SuSE firewall
> when you have no idea what the heck it's really doing when you click on
> Paranoid (or whatever security setting you choose). Slack forces you to learn
> about TCP wrappers and about TCP/IP protocols so you can write a good
> iptables script. Without this knowledge you can't run a secure server...and
> by the way I set up my PCMCIA wireless networking card (linksys) to run just
> fine on slackware.
>
> just to clarify my statement - I have nothing against SuSE, but in my opinion
> using SuSE is like running Windows without the BSOD. So in other words SuSE
> is excellent but I prefer slackware because you become more intimate with
> your box..
> :)
>
>
> _______________________________________________
> members mailing list
> EMAIL:PROTECTED
> http://mlug.missouri.edu/mailman/listinfo/members
>
_______________________________________________
members mailing list
EMAIL:PROTECTED
http://mlug.missouri.edu/mailman/listinfo/members

References:
- RE: [MLUG] SuSE
  - From: "Matt Ross" <EMAIL:PROTECTED>
- Re: [MLUG] SuSE
  - From: Chad Whiting <EMAIL:PROTECTED>

Prev by Date: RE: [MLUG] SuSE
Next by Date: Re: [MLUG] SuSE
Previous by thread: Re: [MLUG] SuSE
Next by thread: RE: [MLUG] SuSE
Index(es):
- Date
- Thread