On Fri, 2003-12-05 at 03:52, bruce wrote: > Ed... > > You're getting it!! But given that the enviornment that I envision will have > literally strangers coming into my box... I need to be reasonable > paranoid/secure... Which brings me to my original question... I think I've > pretty well formed the basis of the issue/problem that I'm seeking to > solve... I don't envy your situation. If you're going to give folks carte blanche with compilers and development tools, it's only a matter of time before the truly ruthless break your chain of "control". You need to develop a full-blown security policy. Some concepts to Google: - ACLs - chroots/jails - sandboxing (rebuild environment at regular intervals) - Intrustion Detection (Host and Network) - Social engineering HTH. -- Jason Dixon, RHCE DixonGroup Consulting http://www.dixongroup.net -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
