Re: rwxr-xr-x /root
On Sat, Nov 11, 2000 at 07:27:00PM -0500, H. S. Teoh wrote:
> The files I keep under /root are mainly system-specific stuff, such as
> upgrade logs, uninstall information for stuff I install by hand, backups
> of various custom-made system scripts and config files (automatic
> packaging systems aren't perfect, y'know, sometimes they trash your
> custom-made files). No reason anyone other than root should want to read
> these files, since the information is useful only for root.
Why would you store backups and logs in /root instead of
someplace in your home directory? The only reason I can
think of, regardless of sensitivity, is convenience; you're
already logged in as root, may as well put them in ~, right?
Once you've done that, I'm sure you then chmod 700 your
sensitive stuff anyways. My point was, assuming you're
doing things as a normal user (sudo tar zcvf backup.tar.gz /,
or whatever), it is more convenient to store in your normal
user's home directory. mkdir ~/secure; chmod 700 ~/secure;
if necessary.
I apologize for sounding troll-ish previously, and I retract
my statement that those who are using 'su' aren't security
conscious. However, I disagree with the statement that
/root being 755 is in any way a security issue, especially
since it implies that normal home directories being 755
is ok, while root's home directory is not.
Reply to: