-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, Nov 04, 2005 at 06:18:00AM -0700, Craig wrote: > Chad Martin wrote: > > srikantas5 wrote: > >> Is there a way to deny read-permission to root user to a directory? > > > > Yes. Use chmod to make it only readable by the owner. > > > > Short answer: > > chmod 700 directory > > I have to disagree with you on this one. Maybe it works that way in > some distros, but on Mandrake 9.3, root cannot be excluded from a directory. > > I tried your suggested chmod 700 as a user, then su'd into root and not > only could I view the contents of the directory, I could also view the > contents of a file in that directory. (The file was chmod to 600 and > the owner was NOT root.) > > Isn't the whole principle behind root that as such, they can do anything?
The only thing I can think of (off the top of my head) would be to use gnupg to encrypt it. Then, as long as root didn't have the encryption key, I don't think it could be read, even as superuser. - -- Scott GPG KeyID EB3467D6 ( 1B848 077D 66F6 9DB0 FDC2 A409 FA54 D575 EB34 67D6) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6 Willow: Nervous? Xander: No way. I'm full of that good old kamikazee spirit. Giles: Xander, just because this is never going to work, there's no need to be negative. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFDa2Gr+lTVdes0Z9YRAphtAJ9HgsXlvyUvZNkW4G60XTzXjZrcjACgrow1 CxIjKw3OjCilkH2DHANWsiY= =DFZE -----END PGP SIGNATURE----- ------------------------ Yahoo! Groups Sponsor --------------------~--> Get Bzzzy! (real tools to help you find a job). Welcome to the Sweet Life. http://us.click.yahoo.com/A77XvD/vlQLAA/TtwFAA/0XFolB/TM --------------------------------------------------------------------~-> To unsubscribe from this list, please email [EMAIL PROTECTED] & you will be removed. Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/LINUX_Newbies/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
