The checksecurity command runs a small collection of simple system checks which are designed to catch a few common security issues.
The checksecurity command scans the mounted files systems (subject to the filter defined in /etc/checksecurity.conf) and compares the list of setuid programs to the list created on the previous run. Any changes are printed to standard output. Also, it generates a list of nfs and afs filesystems that are mounted insecurely (i.e. they are missing the nodev and either the noexec or nosuid flags).
checksecurity is run by cron on a daily basis, and the output stored in /var/log/setuid/setuid.changes.
Checksecurity Installation:
Under Ubuntu Linux, open the terminal and type following command to install checksecurity:
Continue Reading...
The checksecurity command scans the mounted files systems (subject to the filter defined in /etc/checksecurity.conf) and compares the list of setuid programs to the list created on the previous run. Any changes are printed to standard output. Also, it generates a list of nfs and afs filesystems that are mounted insecurely (i.e. they are missing the nodev and either the noexec or nosuid flags).
checksecurity is run by cron on a daily basis, and the output stored in /var/log/setuid/setuid.changes.
Checksecurity Installation:
Under Ubuntu Linux, open the terminal and type following command to install checksecurity:
sudo apt-get install checksecurity
0 comments:
Post a Comment