On Tue, 2005-04-19 at 06:01 -0700, Alex Barylo wrote:
> If you /home filesystem is ext2 or ext3 you can do a "chattr +i ~" and
> then monitor log files for error messages. Even if you won't get any
> messages, not even root will be able to chmod your $HOME.
Isn't that kinda nuclear???
A file with the `i' attribute cannot be modified:
it cannot be deleted or renamed, no link can be
created to this file and no data can be written to
the file. Only the superuser or a process pos-
sessing the CAP_LINUX_IMMUTABLE capability can set
or clear this attribute.
--
-----------------------------------------------------------------
Ron Johnson, Jr.
Jefferson, LA USA
PGP Key ID 8834C06B I prefer encrypted mail.
"Self-esteem must be earned! When you dare to dream, dare to
follow that dream, dare to suffer through the pain, sacrifice,
self-doubts, and friction from the world, you will genuinely
impress yourself."
Dr. Laura Schlessinger
Attachment:
signature.asc
Description: This is a digitally signed message part