Next: Servidor FTP Up: Protegendo Serviços de Rede Previous: Protegendo Serviços de Rede Contents
O cliente e servidor ntp utilizado já tem sua política definida na política de referência, e não é necessária sua customização. Ao instalar o pacote ntp (realizado via o utilitário yum do Fedora), os arquivos ficaram com os seguintes contextos de segurança:
| Permissão DAC | Contexto de Segurança | Arquivo |
|---|---|---|
| drwxr-xr-x root root | system_u:object_r:etc_t | /etc/ntp |
| -rw-r-r- root root | system_u:object_r:net_conf_t | /etc/ntp.conf |
| drwxr-x-- root ntp | system_u:object_r:ntpd_key_t | /etc/ntp/crypto |
| -rw---- root root | system_u:object_r:ntpd_key_t | /etc/ntp/crypto/pw |
| -rw---- root root | system_u:object_r:ntpd_key_t | /etc/ntp/keys |
| -rw-r-r- root root | system_u:object_r:net_conf_t | /etc/ntp/step-tickers |
| -rwxr-xr-x root root | system_u:object_r:ntpd_script_exec_t | /etc/rc.d/init.d/ntpd |
| -rw-r-r- root root | system_u:object_r:etc_t | /etc/sysconfig/ntpd |
| -rwxr-xr-x root root | system_u:object_r:bin_t | /usr/bin/ntpstat |
| -rwxr-xr-x root root | system_u:object_r:bin_t | /usr/sbin/ntp-keygen |
| -rwxr-xr-x root root | system_u:object_r:bin_t | /usr/sbin/ntp-wait |
| -rwxr-xr-x root root | system_u:object_r:ntpd_exec_t | /usr/sbin/ntpd |
| -rwxr-xr-x root root | system_u:object_r:ntpdate_exec_t | /usr/sbin/ntpdate |
| -rwxr-xr-x root root | system_u:object_r:bin_t | /usr/sbin/ntpdc |
| -rwxr-xr-x root root | system_u:object_r:bin_t | /usr/sbin/ntpq |
| -rwxr-xr-x root root | system_u:object_r:bin_t | /usr/sbin/ntptime |
| -rwxr-xr-x root root | system_u:object_r:bin_t | /usr/sbin/ntptrace |
| -rwxr-xr-x root root | system_u:object_r:bin_t | /usr/sbin/tickadj |
| drwxr-xr-x ntp ntp | system_u:object_r:ntp_drift_t | /var/lib/ntp |
| drwxr-xr-x ntp ntp | system_u:object_r:ntpd_log_t | /var/log/ntpstats |
Jeronimo Zucco 2008-04-26