8. Logs en Traps
Local vs remote logging issues
Local logging
•Log file bescherming
•Log file capaciteit/rotation
Remote issues
•Waar naartoe?
•Syslog
•SNMPtrap
9. Logs en Traps
Log file bescherming: append-only file
flags op FreeBSD
chflags
•chflags sappnd <path>/file.log
•ls -lo <path>/file.log
Enforcement tegen root users
•Securelevel +1 (in single user mode)
10. Logs en Traps
Log file bescherming: append-only file
flags op GNU/Linux
file attributes
•chattr -a <path>/file.log
•lsattr <path>/file.log
Enforcement tegen root users
•?
25. Database Implementatie
MySQL gebruikers en permissies (2)
mysql> select Host,User,Select_priv,Alter_priv,Insert_priv from user;
+-------------------------+------------------+-------------+------------+-------------+
| Host | User | Select_priv | Alter_priv | Insert_priv |
+-------------------------+------------------+-------------+------------+-------------+
| localhost | root | Y | Y | Y |
| publicwww01.localdomain | root | Y | Y | Y |
| 127.0.0.1 | root | Y | Y | Y |
| ::1 | root | Y | Y | Y |
| localhost | concrete5usr | N | N | N |
| localhost | debian-sys-maint | Y | Y | Y |
| localhost | modxusr | N | N | N |
| localhost | modxusr03 | N | N | N |
+-------------------------+------------------+-------------+------------+-------------+
26. Database Implementatie
MySQL gebruikers en permissies (3)
mysql> show grants;
+---------------------------------------------------------------------------------------------------------------------------------------+
| Grants for root@localhost |
+---------------------------------------------------------------------------------------------------------------------------------------+
| GRANT ALL PRIVILEGES ON *.* TO 'root'@'localhost' IDENTIFIED
BY PASSWORD 'ABCD' WITH GRANT OPTION |
| GRANT PROXY ON ''@'' TO 'root'@'localhost' WITH GRANT
OPTION |
+---------------------------------------------------------------------------------------------------------------------------------------+