> 1)Write a program that checks the size/date of the WWW directory
> If it fails have it Kill the WWW server
> and send email to the admin.
> 2)Setup a CRON job to run the program every 15 min.
>
> If a hacker is good enough they will find it, but who would be looking for such a random thing?
If you're going to do something this screwy, why not install sshd on the WWW
server and have it allow ssh access from an internal machine. Then run the
cron job on the internal machine. Do *not* allow ssh to go the other
direction.
In other words, if you're going to automate something to verify the state of a
system, make sure that the automation is not part of the state that you're
verifying.
Chris
--
Chris Garrigues O- cwg @
DeepEddy .
Com
Deep Eddy Internet Consulting +1 512 432 4046
609 Deep Eddy Avenue
Austin, TX 78703-4513 http://www.DeepEddy.Com/~cwg/
Attachment:
pgpX4gXouPCxV.pgp
Description: PGP signature
References:
|
|
