Sophie

• Search
• Distribution
• Explorer
• Source & Patches
• Chat
• Help
• About

distrib > Mandriva > 7.2 > i586 > by-pkgid > 1f4b30d2666d3627c0dd367128124060 > changelog

msec-0.15-14mdk.src.rpm

• Info
• Deps
• Files
• Scripts
• ChangeLog
• Location
• Others versions
• Analyse

• Tue Oct 10 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-14mdk

  - call telinit after modifying inittab

• Tue Oct 10 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-13mdk

  - Applied Warly patch to fix user list problem under kdm.
  - User list option for gdm too.

• Tue Oct 10 2000 Warly <warly@mandrakesoft.com> 0.15-12mdk

  - change the UserList method to not append at the end
  of kdmrc (in the wrong section)

• Mon Oct 9 2000 Pixel <pixel@mandrakesoft.com> 0.15-11mdk

  - remove the fix for #760 (it needs real fixing!)

• Mon Oct 9 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-10mdk

  - conf/server.[45]: add pcmcia

• Mon Oct 9 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-9mdk

  - fix for #760 (kdm should not display the list of users for high security
  levels)

• Mon Oct 9 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-8mdk

  - fix a typo in conf/perm.0

• Wed Oct 4 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-7mdk

  - Autologin allowed in level 0, 1, 2.... I'm against this... but...

• Wed Oct 4 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-6mdk

  - fix some entry in perm.*
  - Autologin will only work in level 0

• Tue Oct 3 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-5mdk

  * init-sh/*.sh : instead of modifying Xsession,
  create the /etc/X11/xinit.d/msec file which can contain eventual
  rules appended by msec.

• Mon Oct 2 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-4mdk

  - some fix.

• Mon Oct 2 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-3mdk

  - init-sh/*.sh : modify /etc/X11/Xsession, not /etc/X11/xdm/Xsession
  nor /etc/X11/xinit/xinitrc anymore, as they all load
  /etc/X11/Xsession.

• Fri Sep 1 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-2mdk

  - install manually
  - use /usr/share/man macros
  - use %config(noreplace) for /etc/msec and for logfile

• Tue Jul 18 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.15-1mdk

  - cron-sh/security_check.sh : use -L in ls,
  to dereference symbolic link Chris Green
  - conf/perm.*: /var/log/squid must be owned by squid.squid.
  - cron-sh/security.sh:
  - init-sh/custom.sh: added patch from AG ,
  if no user to mail security report to is availlable, send to root.

• Wed May 17 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.14-6mdk

  - Handle new libsafe path.

• Wed May 17 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.14-5mdk

  - corrected a wrong path.

• Wed May 3 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.14-4mdk

  - LoaderUpdate() make a difference between an empty
  variable, and a non existing one.

• Tue Apr 25 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.14-3mdk

  - Fix a bug with comment removed pointed out by Konrad Bernloehr.

• Mon Apr 24 2000 Pixel <pixel@mandrakesoft.com> 0.14-2mdk

  - conf/perm.[0-4]: fix ugly disgusting fucking bloody buggy bug!
  (remove bloody /usr/{bin,sbin}/* entries)

• Wed Apr 19 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.14-1mdk

  - Bug fix.
  - Support Grub as well as Lilo.

• Tue Apr 18 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.12-5mdk

  - cron job at 4:00am, msec_find fix.

• Mon Apr 17 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.12-4mdk

  - perm.5 : -e s'/ntool/ntools/' -e s'/ctool/ctools/'
  - updated documentation.
  - file_perm.sh : bug fix + output to /dev/null.
  - include /var/tmp in perm.[0-5].
  - Patch to msec_find from Thomas Poindessous.

• Fri Apr 14 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.12-1mdk

  - Modify zprofile.
  - use libsafe-1.3

• Thu Mar 16 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - security.sh : export *_TODAY variable to be used by msec_find.
  - find.c : removed a debuging printf.

• Thu Mar 9 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com> 0.10-1mdk

  - custom.sh : added a patch from Havard Bell.
  - custom.sh : check if libsafe is installed before asking if the user want to use it.
  - Heavily modified msec_find.
  - Added msec_find utility, written by Thierry Vignaud which will avoid us to
  find / 5 times :)
  - Added support for libsafe stack overflow protection in level 4 / 5 /
  custom
  - trap the sigint signal.
  - use %config for config file ( thanks to Frederic Lepied ).
  - use /etc/security/msec for config file only.
  - Renamed init.sh to msec, and install it in /usr/sbin.
  - The other shell scripts are located in /usr/share/msec
  - Included patch from Stefan Siegel.

• Tue Jan 18 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - custom.sh : fix a nasty typo.

• Thu Jan 6 2000 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - security.sh : find are niced to (+19)
  - Camille updated the documentation.
  - Removed the "spawn a shell on boot" feature of level0 cause of a tty problem.
  - shutdown.allow is 600 in level 4/5; 644 else.
  - updated doc/security.txt
  - updated init-sh/custom.sh
  - level 0-3 -> ctrl-alt-del allowed for any local user.
  - level 4-5 -> ctrl-alt-del allowed for root.

• Wed Dec 29 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Removing grpuser manpage, because :
  1 - grpuser is not to be used by any user, ( and should not have a manpage so ).
  2 - manpage is obsolete

• Tue Dec 28 1999 Chmouel Boudjnah <chmouel@mandrakesoft.com>

  - add man-pages from camille.

• Fri Dec 24 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Use the mail user variable.
  - level[35]: also do a mail report.
  - moved Syslog(), Ttylog(), Maillog() to security.sh
  - security_check.sh & diff_check.sh now sourced from security.sh
  - Typo / bug fix
  - init-sh/perm[15]: files should be constant in their content.
  all entry should be in each perm file

• Tue Dec 21 1999 Pixel <pixel@mandrakesoft.com>

  - init-sh/lib.sh (LiloUpdate): replace the -z ${LILO_PASSWORD} by
  ${LILO_PASSWORD+set} != set
  - init-sh/lib.sh (LiloUpdate): replace the call to AddRules to
  AddBegRules (password= must in the beginning of lilo.conf)
  - init-sh/lib.sh (AddBegRules): 1 \n instead of 2

• Mon Dec 20 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Use grpconv after modifying /etc/group.
  - Add a message for level 5 saying that user who want X access
  should be in the xgrp group.

• Mon Dec 20 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - fixed a typo / variable pb.

• Mon Dec 20 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - init-sh/perm.[05]: Oops, /var/spool/mail is 771 not 755.
  - init-sh/lib.sh: removed the failsafe for not a tty stdin (not efficient)
  - init-sh/lib.sh: rewrote the perl script (now a one-liner :)
  - Big cleanup.
  - All work properly now.
  - msec.spec: modify to take into account the Makefile modifying the .spec
  - Makefile (VERSION): make it the same as the .spec

• Sat Dec 18 1999 Pixel <pixel@mandrakesoft.com>

  - init-sh/lib.sh: added failsafe for not a tty stdin

• Sat Dec 18 1999 Pixel <pixel@mandrakesoft.com>

  - no interactive questions if not a tty

• Thu Dec 16 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Don't use msec parsing routine to hack inittab

• Thu Dec 16 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Fixed the last AddBegRules() problem.
  - Indentation problem should be fixed.
  - All debug finished, changing secure.tmp to a mktemp
  allocated tmpfile for symlink security.
  - DRAKX_USER variable no longer needed.
  - grpuser.sh take only one opt ( --refresh ),
  take group name from /etc/security/msec/group.conf
  and add user from /etc/security/msec/user.conf if secure level > 2
  - level0.sh fixed inittab entry
  - fix a typo
  - As requested, direct shell access for level 0
  - Fixed a little problem with the DRAKX_USERS variable
  - removed chattr +a because of the problem it can cause to
  other system automated system task.

• Mon Dec 13 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - diff_check.sh : fix a typo.

• Fri Dec 10 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - custom.sh : Fix a typo & forgot to export path & secure level

• Thu Dec 9 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - More bugfix.
  - Many bugfix, always trying to get a bugfree release :).
  - Renamed some variable, added consistencie.
  - security_cjheck.sh: print header at begining of the log.
  - diff_check.sh: typo.

• Wed Dec 8 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - security_check.sh: remove /tmp stuff.
  - security_check.sh: typo
  - level[1-3].sh: Changed crontab call to file_check.sh
  from every hour to every midnight ( bug reported by axalon ).
  - diff_check.sh: clean up.
  - moved file_check.sh to diff_check.sh and changed
  what is related to cron call in level[15].sh
  - Added missing configurations question in level custom.
  - bug fix.

• Wed Dec 8 1999 Chmouel Boudjnah <chmouel@mandrakesoft.com>

  - Various (Makefile|specfiles) clean-up.
  - insert doc.

• Mon Dec 6 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Released 0.5
  - Divided security check into 2 files :
  security_check.sh & file_check.sh,
  the first do normal security check, the other watch at anormal change
  on the system...
  - Bug fix again & again
  - Updated perm files & fix a security problem ( thanks Axalon ).

• Wed Dec 1 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - DrakX compatibility.

• Wed Dec 1 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Add & delete of userlist from audio group ( level 1 & 2 ).
  - Minor fix

• Wed Dec 1 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - We now preserve config file implementation.
  - Minor fix to lib.sh
  - export profile variable...

• Tue Nov 30 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Many cron security check added.
  - Print more infos.

• Mon Nov 29 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Released 0.4 :
  - Now have a custom mode, just answer the question.
  - Msec print what it does.
  - Bug fix in LiloUpdate().

• Mon Nov 29 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Fixed a few bugs in msec.

• Fri Nov 26 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - grpuser was not installed.

• Fri Nov 26 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Fix a bug in level3.sh
  - level[12].sh Removed some unused code

• Thu Nov 25 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Call chkconfig with the new --msec option.

• Thu Nov 25 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Cleaned up tree.

• Thu Nov 25 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Removed touched file /-i

• Thu Nov 25 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - Create rc.firewall to avoid error,
  - Call grpuser with the good path,
  - Call groupadd before usermod.

• Tue Nov 23 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - New release (0.3) :
  Now each security level has it's own set of permissions.
  Add "." at the end of $PATH for level 1.
  Corrected some grave bug, it should work properly now.

• Thu Nov 18 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - New release (0.2) :
  Fixed the path for promisc_check.sh :
  now /etc/security/msec/cron-sh/promisc_check.sh
  In level 1 & 2, user is now automagically added to the audio group.

• Tue Nov 16 1999 Yoann Vandoorselaere <yoann@mandrakesoft.com>

  - First packaging attempt :-).