
look at http://umbc.edu/rscan/ for some details.

(The modules work and have been tested on: SGI - Irix 4.0.5, 5.2, 5.3, 6.0.1)
(The modules may work on: Other platforms)


---------------------------------
The NetSecurity Modules scan for:
---------------------------------

	/etc/default/login & /etc/default/su settings
	/var/sysgen/stune settings - Current kernel parameters.
	/var/X11/xdm/Xservers settings - Checks if -shmnumclients 0 is
		in the file (For Irix 5.2, 5.3, and 6.0.1 machines)
	File System exports
	/etc/fstab mount settings - Looks for filesystems that could
		possibly be mounted nosuid and/or nodev.
	/etc/inetd.conf settings, including:
		rshd options
		tftpd options
	Checks permissions of root's dot files.
	Checks ownerships of root level (/) directories and files
	Looks for identd being installed.
	Checks if the machine is set to log to a central log host
	Checks user .rhosts for + entries, checks root's .rhosts and
		the /etc/hosts.equiv for + entries, for out of date
		entries, and notify's which machines are trusted.
	Checks the current portmap/rpcbind setup.
	Checks and warns about possible problems with the current
		rpc services that are running.
	Checks the version of sendmail running for problems.
	Checks the system log ownerships.
	Looks for Tcp Wrapper being installed, warns about un-wrapped 
		services if it is.
	Checks the local X display for Xauthority, and if it is open.


	Disabled by default: (Rename to file.pl to enable)
	--------------------------------------------------

	Anonymous FTP - Turned on and writable home directory
	World Writable files or directories	
	Check for servers running not started out of inetd



Notes:
------
    I, my employer (University of Maryland), my friends, family, or
parakeet snowy (she's albino) are NOT responsible for any problems you may
have with this program.  It is provided "As Is", and I'm distributing
it in the hopes that it will help people with basic security problems,
and make people more aware of computer security in general.  Enjoy..



CHANGES:
--------
	* Changed Xserver check so it won't report a warning if your X
		server is closed and no hosts are allowed.
		(Thanks David Ascher)

