On Mon Jun 30, 2003 at 12:10:00PM -0600, Vincent Danen wrote: [...] > I also believe that a user can enter another user's home dir but will get a > permission denied if they do an ls. Other permissions protect the files in > the homedir. The homedir should have execute-only perms. But, taking a > quick look, it seems that is not the case. Hmmmm. > > That does kind of suck. msec used to do execute-only perms on homedirs... I > wonder why it decided that read/execute perms was an ok thing to do.
My mistake. I had msec level 2 on my workstation which is why it was read/execute perms. Changing to level 3 gives back the appropriate homedir perms. -- MandrakeSoft Security; http://www.mandrakesecure.net/ Online Security Resource Book; http://linsec.ca/ "lynx -source http://linsec.ca/vdanen.asc | gpg --import" {FE6F2AFD : 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD}
pgp00000.pgp
Description: PGP signature