lck Creative Commons License 2005.07.01 0 0 3920
Sziasztok !

Mandriva 2005-öt használok. A biztonsági szint beállításom "magas". Erre a beállításra azt írja magyarázatként hogy "éjszaka több ellenőrzés fut".

A múlt éjszaka wine -vel futtattam G3 torrent - klienset - amivel az egész éjszaka letöltöttem. ( a tűzfalamon emiatt a 6881- 6999 potok engedélyezve vannak )

Az előbb a postafiókomat megnyitva ( azt amely címet címet a mandriva központnak is megadtam ) ezt a mailt kaptam:


----------------------------------------------------------------------------------------------------------------------------


[msec] *** Security Check on localhost, Fri Jul 1 04:07:40 CEST 2005 ***


Security Warning: World Writable files found :
- /tmp/.ICE-unix
- /tmp/.X11-unix
- /tmp/.X11-unix/X0
- /tmp/.font-unix
- /tmp/.font-unix/fs-1
- /var/bdc
- /var/bdc/infected
- /var/bdc/suspected
- /var/lib/texmf
- /var/lib/texmf/ls-R
- /var/run/acpid.socket
- /var/run/dbus/system_dbus_socket
- /var/run/xdmctl/dmctl-:0/socket
- /var/run/xdmctl/dmctl/socket
- /var/spool/postfix/dev/log
- /var/spool/postfix/private/anvil
- /var/spool/postfix/private/bounce
- /var/spool/postfix/private/cyrus
- /var/spool/postfix/private/cyrus-chroot
- /var/spool/postfix/private/cyrus-deliver
- /var/spool/postfix/private/cyrus-inet
- /var/spool/postfix/private/defer
- /var/spool/postfix/private/error
- /var/spool/postfix/private/lmtp
- /var/spool/postfix/private/lmtp-filter
- /var/spool/postfix/private/local
- /var/spool/postfix/private/maildrop
- /var/spool/postfix/private/proxymap
- /var/spool/postfix/private/relay
- /var/spool/postfix/private/rewrite
- /var/spool/postfix/private/smtp
- /var/spool/postfix/private/smtp-filter
- /var/spool/postfix/private/tlsmgr
- /var/spool/postfix/private/trace
- /var/spool/postfix/private/uucp
- /var/spool/postfix/private/verify
- /var/spool/postfix/private/virtual
- /var/spool/postfix/public/cleanup
- /var/spool/postfix/public/flush
- /var/spool/postfix/public/pickup
- /var/spool/postfix/public/qmgr
- /var/spool/postfix/public/showq
- /var/spool/spamassassin
- /var/spool/spamassassin/auto-whitelist
- /var/spool/spamassassin/auto-whitelist.db

Security Warning: these files shouldn't be owned by someone else or readable :
- /home/molinmo/.Xauthority : file is group readable.
- /home/molinmo/.Xauthority : file is other readable.

Security Warning: these home directory should not be owned by someone else or writable :
user=gdm(73) : home directory is group writable.

Security Warning: These files belonging to packages are modified on the system :
- /etc/X11/app-defaults/XScreenSaver
- /etc/X11/fs/config
- /etc/host.conf
- /etc/hotplug/blacklist
- /etc/info-dir
- /etc/inittab
- /etc/login.defs
- /etc/menu-methods/simplified/translate_menus
- /etc/menu-methods/translate_menus
- /etc/modprobe.conf
- /etc/modprobe.preload
- /etc/modules
- /etc/mtools.conf
- /etc/ntp.conf
- /etc/pam.d/system-auth
- /etc/ppp/chap-secrets
- /etc/ppp/options
- /etc/ppp/pap-secrets
- /etc/ppp/pppoe.conf
- /etc/qtrc
- /etc/shells
- /etc/shorewall/interfaces
- /etc/shorewall/policy
- /etc/shorewall/rules
- /etc/shorewall/zones
- /etc/sysconfig/bootsplash
- /etc/sysconfig/firstboot
- /etc/sysconfig/harddrake2/previous_hw
- /etc/sysconfig/msec
- /etc/sysconfig/rawdevices
- /etc/sysconfig/syslog
- /etc/sysctl.conf
- /etc/syslog.conf
- /etc/xml/catalog
- /lib/modules/2.6.11-6mdk/modules.alias
- /lib/modules/2.6.11-6mdk/modules.dep
- /lib/modules/2.6.11-6mdk/modules.inputmap
- /lib/modules/2.6.11-6mdk/modules.isapnpmap
- /lib/modules/2.6.11-6mdk/modules.pcimap
- /lib/modules/2.6.11-6mdk/modules.symbols
- /lib/modules/2.6.11-6mdk/modules.usbmap
- /opt/bdc/Plugins/arc.xmd
- /opt/bdc/Plugins/arj.xmd
- /opt/bdc/Plugins/bzip2.xmd
- /opt/bdc/Plugins/cab.xmd
- /opt/bdc/Plugins/ceva_vfs.cvd
- /opt/bdc/Plugins/cevakrnl.cvd
- /opt/bdc/Plugins/cevakrnl.ivd
- /opt/bdc/Plugins/cevakrnl.rvd
- /opt/bdc/Plugins/cevakrnl.xmd
- /opt/bdc/Plugins/cpio.xmd
- /opt/bdc/Plugins/cran.cvd
- /opt/bdc/Plugins/cran.xmd
- /opt/bdc/Plugins/dbx.xmd
- /opt/bdc/Plugins/docfile.xmd
- /opt/bdc/Plugins/emalware.cvd
- /opt/bdc/Plugins/emalware.ivd
- /opt/bdc/Plugins/emalware.xmd
- /opt/bdc/Plugins/gzip.xmd
- /opt/bdc/Plugins/ha.xmd
- /opt/bdc/Plugins/hlp.xmd
- /opt/bdc/Plugins/hpe.cvd
- /opt/bdc/Plugins/hqx.xmd
- /opt/bdc/Plugins/html.xmd
- /opt/bdc/Plugins/iso.xmd
- /opt/bdc/Plugins/java.cvd
- /opt/bdc/Plugins/java.xmd
- /opt/bdc/Plugins/lha.xmd
- /opt/bdc/Plugins/lnk.xmd
- /opt/bdc/Plugins/mbox.xmd
- /opt/bdc/Plugins/mdx.xmd
- /opt/bdc/Plugins/mdx_97.ivd
- /opt/bdc/Plugins/mdx_w95.cvd
- /opt/bdc/Plugins/mdx_x95.cvd
- /opt/bdc/Plugins/mdx_xf.cvd
- /opt/bdc/Plugins/mime.xmd
- /opt/bdc/Plugins/mso.xmd
- /opt/bdc/Plugins/na.cvd
- /opt/bdc/Plugins/na.xmd
- /opt/bdc/Plugins/nelf.cvd
- /opt/bdc/Plugins/nelf.xmd
- /opt/bdc/Plugins/pdf.xmd
- /opt/bdc/Plugins/pst.xmd
- /opt/bdc/Plugins/rar.xmd
- /opt/bdc/Plugins/rup.cvd
- /opt/bdc/Plugins/rup.xmd
- /opt/bdc/Plugins/sdx.cvd
- /opt/bdc/Plugins/sdx.ivd
- /opt/bdc/Plugins/sdx.xmd
- /opt/bdc/Plugins/sfx.xmd
- /opt/bdc/Plugins/tar.xmd
- /opt/bdc/Plugins/tnef.xmd
- /opt/bdc/Plugins/unpack.cvd
- /opt/bdc/Plugins/unpack.ivd
- /opt/bdc/Plugins/unpack.xmd
- /opt/bdc/Plugins/update.txt
- /opt/bdc/Plugins/uudecode.xmd
- /opt/bdc/Plugins/ve.cvd
- /opt/bdc/Plugins/ve.xmd
- /opt/bdc/Plugins/z.xmd
- /opt/bdc/Plugins/zip.xmd
- /opt/bdc/bdc.ini
- /usr/X11R6/lib/X11/fonts/TTF/fonts.cache-1
- /usr/X11R6/lib/X11/fonts/Type1/fonts.cache-1
- /usr/X11R6/lib/X11/icewm/menu
- /usr/bin/escputil
- /usr/bin/xvt
- /usr/lib/gconv/gconv-modules.cache
- /usr/lib/mozilla-firefox-1.0.4/chrome/installed-chrome.txt
- /usr/sbin/fndSession
- /usr/share/a2ps/afm/fonts.map
- /usr/share/azureus/Azureus2.jar
- /usr/share/azureus/restartScript
- /usr/share/config/kdm/kdmrc
- /usr/share/fax/hyla.conf
- /usr/share/fonts/ttf/decoratives/fonts.cache-1
- /usr/share/fonts/ttf/korean/fonts.cache-1
- /usr/share/fonts/ttf/thai/fonts.cache-1
- /usr/share/fonts/ttf/western/fonts.cache-1
- /usr/share/fonts/type1/cyrillic/fonts.cache-1
- /usr/share/ghostscript/8.15/lib/Fontmap
- /usr/share/locale/hu/LC_MESSAGES/wxstd.mo
- /usr/share/man/man1/escputil.1.bz2
- /usr/share/sgml/docbook/xmlcatalog
- /usr/share/texmf/ls-R
- /var/lib/nfs/state
- /var/run/ppp/resolv.conf

These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:6881 *:* LISTEN 29001/wineserver
tcp 0 0 *:6882 *:* LISTEN 29001/wineserver
tcp 0 0 *:6883 *:* LISTEN 29001/wineserver
tcp 0 0 *:870 *:* LISTEN 5352/rpc.statd
tcp 0 0 localhost:10026 *:* LISTEN 8115/master
tcp 0 0 *:sunrpc *:* LISTEN 5261/portmap
tcp 0 0 *:x11 *:* LISTEN 7613/X
tcp 0 0 localhost:5335 *:* LISTEN 7666/mDNSResponder
tcp 0 0 localhost:smtp *:* LISTEN 8115/master
tcp 0 0 *:7741 *:* LISTEN 8168/lisa
tcp 0 0 *:afs3-bos *:* LISTEN 29001/wineserver
udp 0 0 *:7741 *:* 8168/lisa
udp 0 0 *:864 *:* 5352/rpc.statd
udp 0 0 *:867 *:* 5352/rpc.statd
udp 0 0 *:5353 *:* 7666/mDNSResponder
udp 0 0 *:sunrpc *:* 5261/portmap
udp 0 0 jangce-505.adsl.dat:ntp *:* 7773/ntpd
udp 0 0 localhost:ntp *:* 7773/ntpd
udp 0 0 *:ntp *:* 7773/ntpd
raw 6848 0 *:icmp *:* 7 8168/lisa


-----------------------------------------------------------------------------------------------------------------------------


(Bocs a hossza miatt.)

Eddig ilyen még nem érkezett. - Igaz eddig G3 torrentet sem futtattam éjszaka.

Szerintetek, biztonsági okok miatt most kell tennem valamit ????