Firewalls: Re: COPS shareware utility

Firewalls
(September 1994)

Indexed By Thread: [Previous] [Next]

Subject:	Re: COPS shareware utility - any feedback?
From:	Icarus Sparry <I . Sparry @ bath . ac . uk>
Date:	Fri, 16 Sep 1994 20:26:12 +0100
To:	The Soupy One <amin8588 @ pilot . stu . cowan . edu . au>
Cc:	firewalls @ greatcircle . com
In-reply-to:	Your message of "Sat, 17 Sep 1994 01:43:04." <Pine . 3 . 07 . 9409170101 . A78099-9100000 @ pilot . stu . cowan . edu . au>

>From what I've managed to accumulate(which is pathetically little), COPS
>is a UNIX-based program that monitors users' actions, and searches their
>directories for files which are deemed to have some hacking
>properties(whatever that might be), and inform the sysadmin about this.
>Can comeone correct me if I'm wrong(which is the most probable
>probability). 

OK, you are wrong.

More usefully, you are wrong for the following reasons.

Cops examines the sytem configuration and reports problems. These
problems include such things as

users with world (or group) writable directories
System files which are world (or group) writable
Critical system files which are writable
Versions of files which are older than known patches to fix problems

Icarus

References:

Re: COPS shareware utility - any feedback?
From: The Soupy One <amin8588 @ pilot . stu . cowan . edu . au>

Indexed By Date	Previous:	Re: COPS shareware utility - any feedback? From: farsight @ clark . net
Indexed By Date	Next:	Gauntlet From: TSNL!TSMAIL01!kwan @ torstar . attmail . com
Indexed By Thread	Previous:	Re: COPS shareware utility - any feedback? From: farsight @ clark . net
Indexed By Thread	Next:	Re: COPS shareware utility - any feedback? From: mccoy @ io . com (Jim McCoy)