Date: Mon, 1 Oct 2001 23:44:37 -0500 From: "default" <default013subscriptions@hotmail.com> To: <freebsd-questions@freebsd.org> Subject: Fw: file permission question Message-ID: <OE18zg8MTbQpYtMIO5p0000725a@hotmail.com>
next in thread | raw e-mail | index | archive | help
Hi, Thanks for the help... guess I'll leave those files as is... I've also changed the permissions on the commands/progs here: finger last lynx (just don't like other ppl usin it... ) ps rmserver (realserver) sc_serv (shoutcast) top w wall who I don't want my users to have access to them... is there any better way to do this? ... Like the sysctl setting you mentioned for ps? ... (truthfully alot of that went over my head... but i'll figure it out...) Thanks again, Jordan ----- Original Message ----- > From: "David Kirchner" <davidk@accretivetg.com> > To: "default" <default013subscriptions@hotmail.com> > Cc: <freebsd-security@FreeBSD.ORG>; <freebsd-questions@FreeBSD.ORG> > Sent: Monday, October 01, 2001 10:22 PM > Subject: Re: file permission question > > > > /etc/passwd (probably really /etc/pwd.db) are used for several user-land > > programs including 'ls'. It's highly recommended that /etc/passwd stay > > readable to the world. > > > > Btw, the output of 'ps' can be easily reconstructed via access to the > > /proc filesystem. You can unmount this partition, but ps will operate > > differently. > > > > With /proc unmounted, you can still get a process listing for everyone - > > you can disable this by setting the sysctl kern.ps_showallprocs to 0. > > > > On Mon, 1 Oct 2001, default wrote: > > > > > Hi, > > > > > > I am allowing a couple of ppl to have a shell account on one of my > machines, > > > and I am making a few changes to disallow them from using certain > things... > > > like chmoding the 'ps' command to 550 etc... > > > > > > I wanted to ask, is there any reason why one wouldn't want to chmod to > 640 > > > the passwd file and other similar files? ... > > > > > > Thanks, > > > > > > Jordan > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-security" in the body of the message > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OE18zg8MTbQpYtMIO5p0000725a>