Re: [SLE] Alert

From: Ken Schneider (suse-list_at_bout-tyme.net)
Date: 04/26/05

Next message: Erik Jakobsen: "Re: [SLE] Alert"

Previous message: Erik Jakobsen: "Re: [SLE] Alert"
In reply to: Randall R Schulz: "Re: [SLE] Alert"
Next in thread: Erik Jakobsen: "Re: [SLE] Alert"
Reply: Erik Jakobsen: "Re: [SLE] Alert"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

To: SuSE email list <suse-linux-e@suse.com>
Date: Tue, 26 Apr 2005 10:32:25 -0400

On Tue, 2005-04-26 at 07:15 -0700, Randall R Schulz wrote:
> Ken,
>

> Read what I wrote. You'd have to enable execute permissions in all those
> leading directories for that to work. If you enabled execute _and_ read
> on those directories, then people could simply look at the directories
> and access those mail files.
>
> But by all means, be as paranoid as you want. But you're much better off
> understanding how things work than applying some blanket "solution."
>
>
I fully understand how they work, I have working with unix/linux since
1989. The whole reason that unix/linux has been more secure than MS is
because it restricted access to files only to the owner/root by default.
The owner still has the ability to share their files to whomever they
want but should not be the system default.

Many places use linux as a server with many 100's of people having
access. Now who do you trust? All I am saying is that this should -not
be the system default. You can always run your home or personal at work
machine they way you want. From a server stand point this is a no-no.

How many people keep personal files in their home dir, most do. By
default they are created 644 giving -anyone- the ability to view their
private stuff without permission.

-- 
Ken Schneider
UNIX  since 1989, linux since 1994, SuSE  since 1998
 "The day Microsoft makes something that doesn't suck is probably
  the day they start making vacuum cleaners." -Ernst Jan Plugge
-- 
Check the headers for your unsubscription address
For additional commands send e-mail to suse-linux-e-help@suse.com
Also check the archives at http://lists.suse.com
Please read the FAQs: suse-linux-e-faq@suse.com

Next message: Erik Jakobsen: "Re: [SLE] Alert"

Previous message: Erik Jakobsen: "Re: [SLE] Alert"
In reply to: Randall R Schulz: "Re: [SLE] Alert"
Next in thread: Erik Jakobsen: "Re: [SLE] Alert"
Reply: Erik Jakobsen: "Re: [SLE] Alert"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages

Selling LinuxCBT Redhat edition training cource .It is 75 hours/375 Videos on 10Cds training solut
... LinuxCBT is a unique and revolutionary approach to teaching the Linux ... outlets and other CBTs do not; real RedHat Linux skills! ... LinuxCBT includes both Client Management and Server Management ... Planning the installation - identify software, ...
(linux.redhat)
Selling LinuxCBT Redhat edition training cource .It is 75 hours/375 Videos on 10Cds training solut
... LinuxCBT is a unique and revolutionary approach to teaching the Linux ... outlets and other CBTs do not; real RedHat Linux skills! ... LinuxCBT includes both Client Management and Server Management ... Planning the installation - identify software, ...
(alt.os.linux)
Selling LinuxCBT Redhat edition training cource .It is 75 hours/375 Videos on 10Cds training solut
... LinuxCBT is a unique and revolutionary approach to teaching the Linux ... outlets and other CBTs do not; real RedHat Linux skills! ... LinuxCBT includes both Client Management and Server Management ... Planning the installation - identify software, ...
(alt.os.linux.redhat)
fedora-list-request@redhat.com
... Anybody have any experience with RAID controllers under ... >> is not found on that server. ... > If nVidia were to do something silly I could swap the card in a matter ... > the usb drives and then reboot to linux to get them working properly. ...
(Fedora)
Re: Help w/ Not-booting Problem
... >No - setting the hostname is one element in the boot process. ... I have had a working system of RedHat Linux 7.2 for several months. ... >external DNS server on an adsl router! ... >You appear to have a networking problem. ...
(comp.os.linux.misc)