--- Vincent Danen <[EMAIL PROTECTED]> wrote:
> > There's no call for that unless some <idiot> user decides > > to give other people access to his/her home dir. This > > accessibility should be a no-no by default regardless of > > distro. > > This was done, IIRC, to allow people to have a ~/public_html/ > directory and allow apache to enter the home directory so as > to read ~/public_html/ (which would allow someone to do > something like http://yoursite.com/~preador/). > That's pretty much the reasoning for it IIRC. That being > said, there is nothing stopping you from doing a higher > security level or modifying the defaults. > > I also believe that a user can enter another user's home dir > but will get a permission denied if they do an ls. Other > permissions protect the files in the homedir. The homedir > should have execute-only perms. But, taking a quick look, it > seems that is not the case. Hmmmm. > > That does kind of suck. msec used to do execute-only perms > on homedirs... I wonder why it decided that read/execute > perms was an ok thing to do. > > I'll see if I can't find out. > Yes, this does sound serious. Haven't run into difficulties yet, but I would like to fix this on my system here when you find out what's going on. You da man, Vincent! :) --LX __________________________________ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
