I'am the the root user to applying the chmod...
Obviously.
The system works fine, but I don't like to leave the security access of each file in the disk with R-X to other users..
When some user login without privileges he could do something like this:
Cat /etc/hosts
And it works find !!!!
Yeah, it's supposed to. If the users can't read /etc/hosts, then they can't resolve hosts. There's nothing magic about name resolution. A program has to open /etc/hosts, /etc/nsswitch.conf and /etc/resolv.conf to figure out how to resolve a name, and then resolve it (in the normal case, nsswitch.conf might tell the program to operate differently). If they can't read /etc/passwd, then "ls -l" can't show them login names. If they can't read /etc/bashrc or /etc/profile, then their shell won't have any PATH, or.... well, anything.
I don't think this is good to my security.
What can users do with the information in /etc/hosts that would impact your security? Make sure you have a good answer to that before you make changes to your system.
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
