No Programs allowed
Jon Radel
jon at radel.com
Wed May 2 15:07:45 IST 2007
Jon Bjorn Njalsson wrote:
> so is it safe to disable File Command = /usr/bin/file ?
That would be between you, your management (if any), and your security
policy (should you have one).
What I would consider not safe at all is expecting us to know the local
factors that govern the trade offs between:
* The low probability, but potentially extremely expensive, scenario
where file turns out to have been capable of catching that brand new
nasty that just reduced your LAN to a smoldering ruin, and
* The much higher probability, but much lower cost, cases of false
positives.
--Jon Radel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 2890 bytes
Desc: S/MIME Cryptographic Signature
Url : http://lists.mailscanner.info/pipermail/mailscanner/attachments/20070502/9928ebbc/smime.bin
More information about the MailScanner
mailing list