by Aminudin Khali » Sun, 13 May 2001 15:01:36
I am trying to figure out on how to protect directory under Linux/Unix
environment. Let say we have a dedicated directory and we want to
protect that directory with smart card or other authentication devices.
How can I detect if there is an access to that directory ? How can I
implement this functionality in programming ? Is it kernel level
programming or just application programming ?
Any idea is apreciated . Thanks.
by eric » Mon, 14 May 2001 22:02:22
> I am trying to figure out on how to protect directory under Linux/Unix
> environment. Let say we have a dedicated directory and we want to
> protect that directory with smart card or other authentication devices.
> How can I detect if there is an access to that directory ? How can I
> implement this functionality in programming ? Is it kernel level
> programming or just application programming ?
> Any idea is apreciated . Thanks.
Hope this helped,
Eric
MVP for Unix Programming
BrainBench http://www.brainbench.com
by Aminudin Khali » Wed, 16 May 2001 00:43:27
So the best solution is the implement this program in the kernel. I would
be happy if I can do this without compiling the kernel at reboot all the time
to test the program . What I am thinking right now is to do some kernel
module programming that can detect these dedicated directories when there are
accessed . Any idea how to do this ?
May some client server architecture could help this implemention .
by Chri » Tue, 15 May 2001 19:28:52
> Hi,
> So the best solution is the implement this program in the kernel. I would
> be happy if I can do this without compiling the kernel at reboot all the time
> to test the program . What I am thinking right now is to do some kernel
> module programming that can detect these dedicated directories when there are
> accessed . Any idea how to do this ?
> May some client server architecture could help this implemention .
--
Chris Lightfoot -- chris at ex dash parrot dot com -- www.ex-parrot.com/~chris/
``You can't say that, because it's true.''
(unnamed Russian censor, to Malcom Muggeridge, 1933)
by Kevin D. Quit » Wed, 16 May 2001 09:43:43
--
#include <standard.disclaimer>
_
Kevin D Quitt USA 91351-4454 96.37% of all statistics are made up
Per the FCA, this email address may not be added to any commercial mail list
1. protector - 1.00.2 -- GPLed e-mail virus protection
Hi,
Update 2 of protector 1.00 has been released for RedHat 6.0, 6.1, 6.2, 7.0
and 7.1 systems.
This update of the protector software provides a new utility called "revive"
that can be used to revive rejected attachments removed from incoming mails,
and a note in the user guide document "GUIDE.html" describing how to use it.
Version 1.01 is also now available as a development beta release, for
testing and documentation. This reworked protector release handles MS office
and other document formats more intellegently - including the checking of
embedded objects - but it is currently still under development..
For information and download of bother versions, visit the protector web site:
http://protector.sourceforge.net
Protector checks incoming e-mail messages for attachments that could
contain viruses, worms etc - and replaces the offending attachments with
standard warning messages before being passed to "procmail" for local
delivery. The original "dangerous" attachment is saved in a directory that
only the root user can access.
Protector is NOT a virus scanner in the traditional sense: It does NOT
scan attachments for virus signatures, but blocks attachments that could
contain viruses. So *.exe, *.vba etc attachments don't get through.
This means that you don't have to keep protector up to date to stay
protected against the growing tide of new viruses and worms.
Protector does not work by blocking listed types, but by blocking ALL BUT
the listed types. For details of the attachment types "allowed through",
please refer to the web site.
The logic employed by protector to determine the file types contained in
attachments is based on a modified version of the "file" command, and a
number of type-specific validation programs - it does not rely on the
actual name of the file, or the "content-type" declared in the attachment
header. It also looks inside ZIP, TAR and other archive formats, and
checks the files contained in them.
Some types of files are allowed through only under certain conditions. The
main example being that MS Word documents are blocked if they contain ANY
macros, but allowed through otherwise.
It isn't perfect yet, but it's a start. Assistance in developing the
checking logic for new file types is invited.
Chris.
##########################################################################
# PLEASE remember a short description of the software and the LOCATION. #
# This group is archived at http://stump.algebra.com/~cola/ #
##########################################################################
2. urgent question: shell scripts
3. UPS, surge protectors, line conditioners
4. Introducing FUSE: Filesystem in USErspace
5. protector - 1.00.6 -- GPLed e-mail virus protection
7. Multiple phone line surge protectors?
8. what is this error message mean?
9. ANNOUNCE: Protector 1.00.11 - GPL'ed e-mail virus blockade
10. protector 1.00.8: GPL e-mail virus blockade
11. protector - 1.00.9 -- GPLed e-mail virus protection
12. Trust UPS 625 Energy Protector
13. 4.5 and protector - problem