vum, vum.pl - vulnerability mitigator
vum [--options]
vum.pl [--options]
VuM makes modifications to the operating system in order to make it less vulnerable to security breaches.
These modifications include changing file/directory ownership, access permissions, creation/deletion of files, and edition of file content.
--basic : harmless changes --debug : detailed verbosity --deinstall : remove components --fake : simulate changes --help : usage syntax --install : setup components --medium : harmfull changes --quiet : disable messages --secure : perform changes --top : extreme changes --undo : revert changes --verbose : inform activities --version : inform version
VuM must be executed with `root' privileges.
A system reboot may be required after the use of the `secure/undo' operations with the `medium' or `top' options.
/usr/local/vum installation directory /var/opt/vum/backup backup directory /var/opt/vum/lock lock directory /var/opt/vum/log log directory /var/opt/vum/tmp temporary directory
Example 1: Checking without changing
The following example runs without making any changes to the operating system files:
# vum --fake --soft
VuM may utilize the following environment variables, if they exist:
VUM_LOG Alternate log directory
VUM_BKP Alternate backup directory
The following exit values are returned:
0 No erros of any kind.
>0 An error occurred.
No permission You are not Super-user.
chgrp(1), chmod(1), chown(1).
Althoug VuM does not require a large amount of disk space for logs and backups, the log and backup directories should not be placed in a filesystem with limited disk capacity (specially if you plan to run VuM frequently).
Carefully test your system and applications after using the 'medium' or `top' options, and if any problem is found, just use the 'undo' option right away, and your system files will be restored to the status and contents they had before the last execution of VuM.
Before using the 'undo' option, make sure that none of the files saved by VuM has changed since its last run, otherwise unpredictable results may occur.
Wildcards on the status verification lists are not supported yet.
Not all o.s. versions and releases are supported as of the current version.
VuM is free software and is licensed under the Apache Software License (ASL), Version 2.0, as published by the Apache Software Foundation (ASF).
A copy of the ASF ASL is distributed along with VuM ; If not, the license may be obtained at :
(text) http://www.apache.org/licenses/LICENSE-2.0.txt
(html) http://www.apache.org/licenses/LICENSE-2.0.html
Otherwise you can write to :
The Apache Software Foundation 1901 Munsey Drive, Forest Hill, MD 21050-2747 U.S.A.
Commercial support is NOT available for VuM. Limited support is available via email.
The original and current versions consist of code and documentation written by:
Alexandre V. R. Botao < alexandre@botao.org >
( www.botao.org )
Unless required by applicable law or agreed to in writing, VuM is provided on an ``AS IS'' basis, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the ASF ASL for the specific language governing permissions and limitations.