DaemonForums  

Go Back   DaemonForums > FreeBSD > FreeBSD Security

FreeBSD Security Securing FreeBSD.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 12th September 2008
lumiwa lumiwa is offline
Package Pilot
 
Join Date: May 2008
Posts: 145
Default lockdown

I know, it was my mistake but I did try:
I installed /security/lockdown and ran too. I tried to bring system as I have before run a lockdown but I have still some problems. One of them is whe I lohin as user I got in auth.log:
login: _secure_path: cannot stat /home/ajtim/.login_conf: Permission denied
but I am logged in. I don't have .login_conf.

fstab, rc.conf, login.conf, ttys, sysctl.conf are the same as before.

Thanks in advance,

Mitja
Reply With Quote
  #2   (View Single Post)  
Old 12th September 2008
richardpl richardpl is offline
Spam Deminer
 
Join Date: May 2008
Location: Croatia
Posts: 284
Default

Try to deinstall lockdown first and see if anything changes ...

lockdown may not work correctly with new FreeBSD versions - that's normal because it doesnt look to be actively developed.
Reply With Quote
  #3   (View Single Post)  
Old 12th September 2008
lumiwa lumiwa is offline
Package Pilot
 
Join Date: May 2008
Posts: 145
Default

Quote:
Originally Posted by richardpl View Post
Try to deinstall lockdown first and see if anything changes ...

lockdown may not work correctly with new FreeBSD versions - that's normal because it doesnt look to be actively developed.
I did it but the problem is the same...
Reply With Quote
  #4   (View Single Post)  
Old 12th September 2008
richardpl richardpl is offline
Spam Deminer
 
Join Date: May 2008
Location: Croatia
Posts: 284
Default

Run # cap_mkdb /etc/login.conf
Reply With Quote
  #5   (View Single Post)  
Old 12th September 2008
lumiwa lumiwa is offline
Package Pilot
 
Join Date: May 2008
Posts: 145
Default

Quote:
Originally Posted by richardpl View Post
Run # cap_mkdb /etc/login.conf
I di also this and restart computer but it is the same. Do you think that is something with /home permissions? Or some others, please?
Reply With Quote
  #6   (View Single Post)  
Old 12th September 2008
lumiwa lumiwa is offline
Package Pilot
 
Join Date: May 2008
Posts: 145
Default

I did chmod 755 for /home and now I don't have:
login: _secure_path: cannot stat /home/ajtim/.login_conf: Permission denied
anymore.

I don't know if wasthis problem. Is it 755 default for /home, please?
Reply With Quote
  #7   (View Single Post)  
Old 12th September 2008
DutchDaemon's Avatar
DutchDaemon DutchDaemon is offline
Real Name: Ben
Spam Refugee
 
Join Date: Jul 2008
Location: Rotterdam, The Netherlands
Posts: 336
Default

Yes, 755, owned by root:wheel (/home is usually /usr/home)

drwxr-xr-x 3 root wheel 512 Aug 22 19:09 /usr/home/
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 05:36 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick