• Part I
  • sun managers I
• Part D
  • sun managers D
• Part L
  • sun managers L
• Part H
  • sun managers H
• Part B
  • sun managers B
• Part E
  • sun managers E
• Part J
  • sun managers J
• Part F
  • sun managers F
• Part C
  • sun managers C
• Part K
  • sun managers K

SITEMAP

Removing SetUID/SetGID Bits

With all the X-related exploits for Solaris, I'm debating whether to either
remove a bunch of SetUID bits, or shut down the entire X system altogether
(e.g. shut down dtlogin on the console and compile SSH with --without-x
combined with strict ip_filter settings preventing straight X).

Anyhow, could someone tell me what the consequences would be by removing the
setuid or setgid bits from the following programs? Will I be able to
continue using X at all, or will I need to shut it down to adequately secure
my box? I'm pretty confident about most of the binaries on the system, but
am unsure about the following...

/usr/dt/bin/dtsession
/usr/dt/bin/dtaction
/usr/openwin/bin/kcms_configure
/usr/openwin/bin/kcms_calibrate

Thanks for your help.

PS: Anyone had any firsthand experience with Hardened OS software?

Comments

"sun managers B [Part B]" Sponsored Links

• "sun managers B [Part B]" New Questiones!

  • Removing lines after getting perticular text
  • Removing Keyboard reboots machine
  • Removing CDE....
  • remove__________________________________________________Do You Yahoo!?Make international calls f
  • Remove Me
  • Remove logical units from Veritas control
  • remove
  • remounting a partition
  • remote x desktop
  • Remote Printing from Solaris
  • remote power off/on
  • remote power off/on
  • Remote Netra X1 Won't Reboot...
  • remote mount
  • Remote Mount
  • Remote Login problem
  • Remote loghost setup
  • Remote installing Solaris 8 on Netra X1 from NON-Sun bootserver?
  • remote install from multi-CD drive
  • remote exec

Copyright © 2008 thatsjava.com • All rights reserved • CMS Theme by WebmasterFund.com - 0.313