Quoting Ben Stallings (Ben at Workscited.Net): > Now let's say you foresee this situation and do in fact install some sort of > back door. What software do you use? How do you secure it so that other > people don't hack her computer? How do you make it easy enough for her to > start when she needs to without being so obvious that she starts it > unnecessarily? --Ben The read-only FS stuff is a good idea, but can make install updates/patches and pain for -you- when it comes time. Installing tripwire is a better idea, IMHO. Install sshd, disable root logins, enable X forwarding. Setup iptables, lock down everything except ssh access from your box (assuming you have a static IP). Log everything to, I normal do: *.debug /var/log/syslog Probably want to add an entry to logrotate for it as well. If you are -really- anal. Install SNARE and log all API calls. If you got static IPs on each side, setup IPSEC. Run neuss against the each box and make sure there is no warnings. -- Minneapolis St. Paul Twin Cities MN | Phone : (952)943-8700 http://www.mn-linux.org Minnesota Linux | Fax : (952)943-8500 Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9