Mageia forum

[wintpe]

ok titles a bit shortened to get the description in there

i thought id try out the secure mode under security, but it caused me a few issues.
so ive switched back to standard now, however not everything has gone back to standard.

the one thing i know is wrong is trying to execute ssh in a shell as my user gives permision denied, and it appears to all intents and purposes a different ssh
ie when i ls -al on /usr/bin/ssh as root its 755 owned root:root, and 446728 size

when i ls on /usr/bin/ssh as my userid

its 750 and owned by root:ntools

and its a different sized binary 640552

any idea how to properly reset standard mode.

mageia 5rc all updates.

regards peter

[wintpe]

ok ive just worked out that the action of changing security modes has removed my id from the ntools group
and that adding it back fixes that particular problem.

so is the security mode standard not doing its job, and what else has it missed adding me too.

regards peter

[doktor5000]

For an overview about the differences between the security levels, I've only found http://www.brunolinux.com/07-Security/M ... tings.html
ntools controls the access to remote/network commands like telnet, ssh, ping and the same for compilation, which makes sense for a hardened system.
You could also check if http://doc.mageia.org/mcc/5/en/content/msecgui.html or the subsequent sections contain some information about this.

When switching back and forth between normal and secure mode, if msec does not revert the changes of file ownership I'd report that as bug and would ask if that is expected.

Do you have any changed rules in /etc/security/msec/perms.conf ?

[wintpe]

/etc/security/msec/perms.conf is empty

regards peter