Always Learning
2011-Jun-25 01:18 UTC
[CentOS] Good Centos Security Advice & Gnome Thumbnails
Browsing the net for one thing unexpectedly brought me to two good and useful documents: (1) Guide to the Secure Configuration of Red Hat Enterprise Linux 5 http://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf Revision 4.1 February 28, 2011 (2) Hardening Red Hat Enterprise Linux 5 http://people.redhat.com/sgrubb/files/hardening-rhel5.pdf Updated 12 August 2010 Gnome Thumbnail system is mentioned in (1) as dangerous. As many Centos/Red Hat installations use it, here is a brief extract from page 30. 2.2.2.6 Disable All GNOME Thumbnailers if Possible The system?s default desktop environment, GNOME, uses a number of di?erent thumbnailer programs to generate thumbnails for any new or modi?ed content in an opened folder. Execute the following command to prevent the thumbnailers from automatically creating thumbnails for new or modi?ed folder contents: gconftool-2 --direct \ --config-source xml:readwrite:/etc/gconf/gconf.xml.mandatory \ --type bool \ --set /desktop/gnome/thumbnailers/disable_all true This e?ectively prevents an attacker from gaining access to a system through a ?aw in GNOME?s Nautilus thumbnail creators. ------ I hate the thumbnailers, particularly as I have over 12,000 photographs on one machine and thousands more to be added. Eye of Gnome just ignores the 'thumbnail' off setting in Gnome. -- With best regards, Paul. England, EU.
Maybe Matching Threads
- number of items to replace is not a multiple of replacement length
- [Intel-gfx] [PATCH 1/3] drm/atomic: Make disable_all helper fully disable the crtc.
- Bias in R's random integers?
- Mixed effects para factores y no para covariables. Guia y dudas
- Bias in R's random integers?
Wisdom of the Ancients
