On Fri, 27 Jun 1997, Miguel [iso-8859-1] Andrés Santisteban wrote:
> No, I just snfs mount the filesystems of my bastions on another box
> and run tripwire on them. This avoids the problems alluded to by mjr
> I think, where tripwire can be fooled if the kernel or libc.so on the
> box running tripwire have been tampered with.
nope, doesnt help (much). nfsd can lie to your secure machine, as can the
kernel calls utilized by it.
Brian Mitchell brian @
"BSD code sucks. Of course, everything else sucks far more."
- Theo de Raadt
From: Miguel Andrés Santisteban <masantis @