Search:
Type: Posts; User: fishface
Search:
Search took 0.14 seconds.
-
Fixed it.
I had to turn off immutable option by commenting out the (-e 2) at the bottom of audit.rules, then added to the top of the file:
-W never,exclude -F path=/u00/splunk/var -k exclude
...
-
Using audit to track system changes, with rules from the CIS security guidelines.
This server also has Splunk running on it, this creates lots of changes that are reflected in the audit log files,...
-
Okay, I changed the second umask value (else) back to the default value of 022, left the if value at 027 and it now works fine.
Before:
if [ $UID -gt 99 ] && [ "`id -gn`" = "`id -un`" ]; then...
-
The bashrc is the installed default, all I changed was umask number, but your're right...wonder why CentOS did it that way.
The same setting works fine on CentOS5.4 32-bit, and the bashrc appear...
-
CentOS6.2 64-bit
I've changed the umask setting in in /etc/bashrc from the default to 027 for security reasons, it now looks like this:
if [ $UID -gt 99 ] && [ "`id -gn`" = "`id -un`" ]; then
...
-
Thanks for the reply.
Ideally I would like the output of tail -f (or use some of the xconsole options in rsyslong to accomplish this...but it seems it is buggy from what I've read) on each server...
-
I trying to get rsyslog to send messages in /var/log/secure (or auth) to my desktop, tried xconsole but not without much success.
I have a few servers and I would like to get live alerts of...
-
I have 2 shares via Samba and the create mask permissions for Windows users are not working as expected.
The 2 shares point to the same directory 'testing_Hold'...that is the way it has been...
-
Update:
NOTE: CentOS-6.0 works a differently, it uses pam_tally2.so, you have to modify the /etc/pam.d/sshd file to block SSH access, also no_magic_root and no_reset options are not available in...
-
I know this is an old thread, but thought I'd update it for the benefit of others.
I know this works for CentOS 5.5 (Final).
I recommend creating a 'test' user to try it out.
This will lock...
-
Fixed.
After binding the Webmin IP address to a local interface I noticed that the URL in the address (in the web browser) changed from https://myserver.local:10000 to an IP address, for example...
-
I'm playing around with the latest Webmin and I'm not having much luck getting it to bind to the local IP (the one and only interface), after setting it as per the guide here:...
-
You might me able to do something with pfsense ( http://www.pfsense.org/ ), maybe with the squid plugins, it also have captive port, which might be useful for restricting/logging access.
You can...
-
Yeah, I have a love/hate relationship with LVM, great on servers and the such like, but on a desktop...not for me, I inherited this machine so I have been putting up with it, along with CentOS5.6,...
-
How do I install Ubuntu alongside a Centos5.6 LVM install
I have CentOS 5.6 installed on a machine, using LVM, single 160GB disk.
CentOS root used most of the disk space as /root
...
-
Brief history.
I tried setting up Nagios 3.2.2 on Ubuntu 8.04 using this guide
http://nagios.sourceforge.net/docs/3_0/quickstart-ubuntu.html
Every thing went well until trying 'make...
-
Looks as if I need to use pam_cracklib - I'd better start playing then :)
Any help will still be appreciated. :)
-
4 years later on... :) I have moved on since then, I'm now getting to grips with Debian...and have a 2 year daughter!! :D
Yes I was running as root, would be odd if it was for security reasons as...
-
I''m new to Debian 5 so please be gentle:)
When I use 'adduser' it states 'Enter the new password (minimum of 5, maximum of 8 characters)' - how can I enforce password complexity?
I would like...
-
Problem solved, I had also downloaded clonezilla-sysresccd, got the CDs mixed, the official Clonezilla works fine. :)
clonezilla-sysresccd did appear to have some extra nifty things...but if it...
-
I thought I'd ask here first as the range of knowledge is great, but might end up on some Clonezilla forum :)
I using clonezilla-live-1.2.5-35-i686 to create an image of my Advent 4211 netbook,...
-
Thanks x, just what I needed to know.
-
I'm currently using Debian 5.04 Lenny, and I trying to figure out how I stop things running at boot time, in the simplest way, if possible.
In Redhat/SuSE all I had to do was 'chkconfig xxx off'...
-
Yes, it accepts connections and works fine if you start it manually, even with the network interface manually defined to 192.168.199.222
teeitup -thinking about, your right I can't see any...
-
Ok, I missed an important bit of information out.
I changed 'ListenAddress 0.0.0.0' to 'ListenAddress 192.168.199.222' which is the IP address of the machine, to make it more secure.
But to my...
|
|