|
|
|
You can use CA ControlMinder to protect system devices against unauthorized copy. By creating a copy an existing system node unauthorized accessors can export the content of the protected device and read the content of the as raw data.
When a user attempts to create a block-oriented or character special file based on an existing one using the mknod command, CA ControlMinder checks the device. If the the user attempts to create a copy of a protected device CA ControlMinder blocks the attempt and prevents the operation.
By default, CA ControlMinder does not block the device copy operation.
You can enable the system devices protection from the seos.ini file under the SEOS_syscall section in the file_rdevice_max token.
Note: For more information about the file_rdevice_max token, refer to the Reference Guide.
| Copyright © 2013 CA. All rights reserved. |
|