On Thu, 30 Dec 2004, Justin Odom wrote:
Not sure if anyone has experience with this, but I would like to lock down the /etc directory so common users cannot run through the directory and read all the files. However, programs still need to be able to read the files to work.
I'm trying to do this because we have several users on our system that like to peruse the files within /etc.
Anyone have any suggestions?
I don't know of any automated way to do it, but most critical files should already be locked down by default from prying eyes, and anything you specifically want to hide from users can be done easily by the normal permissions/ownership means for whatever user a daemon is running as. Are you trying to hide away that pesky /etc/hosts? ;) Brian J. Conway bconway(at)alum.wpi.edu "LINUX is obsolete" - Andrew S. Tanenbaum, creator of Minix - Jan 29, 1992