preventing .rhost write

From: Genovezos, George (George.Genovezos@sabre-holdings.com)
Date: Wed Jul 27 2005 - 18:13:46 EDT

• Next message: venu.gopalj@wipro.com: "timeout to autofs"
• Previous message: Mike O: "setenv disk-led-assoc question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi all,

I was wondering if there was a way to prevent users from modifying the
.rhost file.

We have a situation where only some users are permitted to rsh over from
one box to anther. It's controlled by SeOS. In an effort to reduce cost
we are looking for alternatives.

I was thinking we could have the .rhost file owned by root with 444
permissions on the file. This would allow the process to continue
working but would prevent the user from modifying his own file.

Only problem is the user can delete it and recreate it.

Is there a ACL that would prevent that from occurring?

Any other ideas?

Thanks in advance

George Genovezos, CISSP, CIFI
Senior Security Analyst
Sabre Holdings Inc.
Southlake, TX US 76092
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

• Next message: venu.gopalj@wipro.com: "timeout to autofs"
• Previous message: Mike O: "setenv disk-led-assoc question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:31:12 EDT