Date: Mon, 03 Jun 2002 07:38:56 +0200 From: Nino Dehne <freebsd-questions@0x54434D.net> To: leroy@3dmasters.net Cc: freebsd-questions@freebsd.org Subject: Re: Restrict user access on freebsd Message-ID: <3CFB00F0.9040704@0x54434D.net> References: <B92125B4.F4C%jrhoden@unimelb.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
Jacob Rhoden wrote: [...] > /etc, for example /etc/group. The best thing to do is to remove the x flag > on most directories, ie /etc /bin /sbin and so on, so that normal users can > execute things like 'ls' and read files like 'group'. (The x flag on > directories means that a user cannot list the directory but can still access > files in it). If you are unsure about the nescessity of a command, then I There's a bit of confusion in your words. You say that the x flag on a directory means that "a user cannot list the directory but can still access files in it". The ability to list files is bound to the r flag, and not inherent to the x flag. I think this is what you meant but it didn't read like that. In the prior sentence you suggest removin the x flag, though. This doesn't make sense at all. So: 1) The r flag on a directory enables listing the contents of that directory. 2) The x flag on a directory enables the contents directory to be accessed. AFAIK, these flags don't interfer with each other, so you can prevent listing but still allow access and vice versa. This is my understanding of the functioning. Regards, Nino To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3CFB00F0.9040704>