source: trunk/server/fedora/config/etc/cron.d/check-setugid @ 2263

Last change on this file since 2263 was 1917, checked in by achernya, 11 years ago
Create check-setugid cronjob This cronjob and associated whitelist will search the Scripts servers daily for set[ug]id binaries, and complain if any unexpected ones are found.
File size: 195 bytes
223 5 * * * root find / -xdev -not -perm -o=x -prune -o -type f -perm /ug=s -print | grep -Fxvf /etc/scripts/allowed-setugid.list | sed 's/^/Extra set[ug]id binary: /'
Note: See TracBrowser for help on using the repository browser.