Hi all!

I'm reviewing the "daily insecurity output" from my NetBSD machine 
(*love* the name, it really says it all!!) and came across these items 
which are really puzzling.


Checking root csh paths, umask values:
/etc/csh.cshrc /etc/csh.login /root/.cshrc /root/.login

 	Root csh startup files do not set the umask.


Root has a bash shell, not csh. How can I supress these error messages?

--------------------------------------

Checking special files and directories.

etc/postfix/main.cf:
 	permissions (0444, 0644)

Right now the perms on main.cf are:

-rw-r--r--  1 root  wheel  1728 Dec  10 10:10 /etc/postfix/main.cf

which is 644.....is it telling me that perms *ought* *to* be 444?

On a production FreeBSD box running postfix (successfully for the past 3 
years) the perms are precisely the same and the FreeBSD daily security 
output from *that* box does not complain.

--------------------------------------

etc/named.conf:
 	type (file, link)

What is it asking or telling me? What, if anything, am I doing wrong?

--------------------------------------

missing: ./root/.cshrc
missing: ./root/.login

As said above, root is running bash. What should I edit to stop it 
telling me this stuff each and every day?

--------------------------------------

missing: ./var/db/kvm.db

what on *earth* is that? why does the proggy think that I need it and 
what's the security significance of its apparent absence?

--------------------------------------

Trace/BPT trap - core dumped

This isn't good I'm sure, but once again, what can I do to remedy this 
output each day?

--------------------------------------

Thanks for your patience and TIA for any light anyone can shine on this 
perplexing daily log.

Regards to one 'n all,
-Colin