Re: secure file permissions
-----BEGIN PGP SIGNED MESSAGE-----
On Mon, 08 Dec 2003 at 03:16:05AM -0500, Domonkos Czinke wrote:
> I recommend using the chattr program. You should set them immutable
> chattr +i /etc/passwd /etc/shadow /etc/group /etc/gshadow. Man chattr.
Setting /etc/shadow +i would not be advisable as it renders your passwd
Setting /etc/passwd +i renders your chsh and chfn commands useless.
Also, if someone r00ts you and they know more then someone who started
using Linux last week, they'll realize the files are +i and take the +i
bit off them.
I fail to see how this would make things any better on your system.
wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import
Excuse #148: endothermal recalibration
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
-----END PGP SIGNATURE-----