Find the answer to your Linux question:
Page 2 of 2 FirstFirst 1 2
Results 11 to 14 of 14
Erm couldn't you link /etc/grub.conf to /boot/grub/menu.lst with Code: lt -s /boot/grub/menu.lst /etc/grub.conf...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #11
    Linux Guru dylunio's Avatar
    Join Date
    Aug 2004
    Location
    Cymru
    Posts
    4,157

    Erm couldn't you link /etc/grub.conf to /boot/grub/menu.lst with
    Code:
    lt -s /boot/grub/menu.lst /etc/grub.conf
    Registered Linux User #371543!
    Get force-get May The Source Be With You
    /dev/null
    /dev/null2

  2. #12
    Just Joined!
    Join Date
    Jul 2005
    Posts
    8
    Here is my /etc/Bastille/config file. I find it a littele bit bizarre, I think that not all the questions I have answered to are here. And I don't find any option for the grub ..... so ... I really don't know what to do .....


    # Q: Would you like to restrict the use of cron to administrative accounts? [Y]
    AccountSecurity.cronuser="Y"
    # Q: Would you like to enforce password aging? [Y]
    AccountSecurity.passwdage="Y"
    # Q: Should Bastille disable clear-text r-protocols that use IP-based authentication? [Y]
    AccountSecurity.protectrhost="Y"
    # Q: Should we disallow root login on all ttys? [N]
    AccountSecurity.rootttylogins="Y"
    # Q: What umask would you like to set for users on the system? [077]
    AccountSecurity.umask="077"
    # Q: Do you want to set the default umask? [Y]
    AccountSecurity.umaskyn="Y"
    # Q: Would you like to password protect single-user mode? [Y]
    BootSecurity.passsum="Y"
    # Q: Would you like to disable CTRL-ALT-DELETE rebooting? [N]
    BootSecurity.secureinittab="N"
    # Q: Should we restrict console access to a small group of user accounts? [N]
    ConfigureMiscPAM.consolelogin="N"
    # Q: Would you like to put limits on system resource usage? [N]
    ConfigureMiscPAM.limitsconf="Y"
    # Q: Would you like to set more restrictive permissions on the administration utilities? [N]
    FilePermissions.generalperms_1_1="Y"
    # Q: Would you like to disable SUID status for at? [Y]
    FilePermissions.suidat="Y"
    # Q: Would you like to disable SUID status for cardctl? [Y]
    FilePermissions.suidcard="Y"
    # Q: Would you like to disable SUID status for mount/umount?
    FilePermissions.suidmount="Y"
    # Q: Would you like to disable SUID status for ping? [Y]
    FilePermissions.suidping="Y"
    # Q: Would you like to disable SUID status for printing utilities? [N]
    FilePermissions.suidprint="N"
    # Q: Would you like to run the packet filtering script? [N]
    Firewall.ip_intro="N"
    # Q: Would you like to add additional logging? [Y]
    Logging.morelogging="Y"
    # Q: Would you like to set up process accounting? [N]
    Logging.pacct="N"
    # Q: Do you have a remote logging host? [N]
    Logging.remotelog="N"
    # Q: Would you like to disable printing? [N]
    Printing.printing_cups="N"
    # Q: Would you like to display "Authorized Use" messages at log-in time? [Y]
    SecureInetd.banners="Y"
    # Q: Should Bastille ensure inetd's FTP service does not run on this system? [y]
    SecureInetd.deactivate_ftp="Y"
    # Q: Should Bastille ensure the telnet service does not run on this system? [y]
    SecureInetd.deactivate_telnet="Y"
    # Q: Who is responsible for granting authorization to use this machine?
    SecureInetd.owner="NextiraOne France"
    # Q: Would you like to set a default-deny on TCP Wrappers and xinetd? [N]
    SecureInetd.tcpd_default_deny="N"
    # Q: Would you like to install TMPDIR/TMP scripts? [N]
    TMPDIR.tmpdir="N"

  3. #13
    Just Joined!
    Join Date
    Jul 2005
    Posts
    8
    10x delunio, I will try that ....

  4. $spacer_open
    $spacer_close
  5. #14
    Just Joined!
    Join Date
    Jul 2005
    Posts
    8
    I've done the link, I don't have errors anymore, but the /var/log/Bastille/TODO file was not generated .... is that meaning that the configuration wasn't applied to my system?


    What about using it and Firestarter at the same time?
    The inconvinient would be that I cannot activate PSAD ...


    I would very much appreciate your answers.

    thank u,
    Diana

Page 2 of 2 FirstFirst 1 2

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •