Date: Mon, 03 Jun 2002 07:38:56 +0200 From: Nino Dehne <freebsd-questions@0x54434D.net> To: leroy@3dmasters.net Cc: freebsd-questions@freebsd.org Subject: Re: Restrict user access on freebsd Message-ID: <3CFB00F0.9040704@0x54434D.net> References: <B92125B4.F4C%jrhoden@unimelb.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
Jacob Rhoden wrote:
[...]
> /etc, for example /etc/group. The best thing to do is to remove the x flag
> on most directories, ie /etc /bin /sbin and so on, so that normal users can
> execute things like 'ls' and read files like 'group'. (The x flag on
> directories means that a user cannot list the directory but can still access
> files in it). If you are unsure about the nescessity of a command, then I
There's a bit of confusion in your words. You say that the x flag on a
directory means that "a user cannot list the directory but can still
access files in it". The ability to list files is bound to the r flag,
and not inherent to the x flag. I think this is what you meant but it
didn't read like that. In the prior sentence you suggest removin the x
flag, though. This doesn't make sense at all. So:
1) The r flag on a directory enables listing the contents of that
directory.
2) The x flag on a directory enables the contents directory to be
accessed.
AFAIK, these flags don't interfer with each other, so you can prevent
listing but still allow access and vice versa. This is my understanding
of the functioning.
Regards,
Nino
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3CFB00F0.9040704>