ProactiveSecurityRoadmap

Differences between revisions 6 and 8 (spanning 2 versions)
Revision 6 as of 2005-04-12 12:17:09
Size: 1125
Editor: client-204-194-122-1
Comment:
Revision 8 as of 2005-04-12 14:57:12
Size: 1468
Editor: pD9EB3351
Comment: added priv requirements of cron
Deletions are marked like this. Additions are marked like this.
Line 17: Line 17:
 * Eliminate inetd from base
Line 18: Line 19:
 * Eliminate inetd from base
Line 20: Line 20:
   * Some info already compiled http://ubuntu.com/wiki/UbuntuHardened
Line 26: Line 27:
    MartinPitt: daemon needs to run as group {{{crontab}}}, {{{/var/spool/cron/crontabs}}} needs to become owned by {{{cron}}} rather than root, a new setuid wrapper program is required which executes the relevant portion of {{{do_command.c/child_process()}}} as root

People

Goal

Proactively improve security for Breezy

Requirements

Agenda

Pre-Work

  • Research privilege requirements of cron

    MartinPitt: daemon needs to run as group crontab, /var/spool/cron/crontabs needs to become owned by cron rather than root, a new setuid wrapper program is required which executes the relevant portion of do_command.c/child_process() as root

  • Research privilege requirements of dhclient3

    MartinPitt: normal user with CAP_NET_RAW and CAP_NET_BIND_SERVICE; needs a suid wrapper to call /etc/dhcp3/dhclient-script; prototypical package available; pending security review of dhclient-script (proper quoting, etc.)

  • Research privilege requirements of dhcpd3

    MartinPitt: normal user with CAP_NET_RAW and CAP_NET_BIND_SERVICE for initialization phase; can be dropped after socket creation; prototypical package available

  • Search for implicit dependencies on inetd via netbase
  • Determine requirements for compile-time stack protection in gcc (4.x?)

UbuntuDownUnder/BOFs/ProactiveSecurityRoadmap (last edited 2008-08-06 16:18:54 by localhost)