[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] SSH vs. .htaccess

Subject: Re: [cobalt-security] SSH vs. .htaccess
From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
Date: Wed, 12 Jun 2002 11:47:09 -0700
Organization: nobaloney.net
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Dave Anders wrote:

> drwxr-xr-x   7 admin    home         4096 Mar 13 11:15
> /home/sites/home
> 
> which is CHMOD 755 and absolutely normally.
> 
> Only "admin" or "root" should be able to cd into that
> /home/sites/home directory. User alfred against it
> should receive a Permission Denied response as soon as
> he tries to cd /home/sites/home

Where do you get that that idea?  the "world" permissions are r-x, so
anyone can log cd into that directory.

> [admin admin]$ ls -ld /home/sites/site1
> drwxrwsr-x   7 alfred   site1        4096 Feb 10 17:30
> /home/sites/site1
> 
> drwxrwsr-x has been created by the Cobalt GUI system.
> I don't understand this setting.

What don't you understand?  The "s"?  Simply, it means that any file
written in that directory will have the group ownership set to the
ownership of the directory.

> Each "site" comes with it's own group. The group of site1
> is site1, the group of site2 is site2 ... and so on.

Yes, so you can have multiple site admins.

Jeff
-- 
Jeff Lasman <jblists@xxxxxxxxxxxxx>
Linux and Cobalt/Sun/RaQ Consulting
nobaloney.net, P. O. Box 52672, Riverside, CA  92517
voice: +1 909 778-9980  *  fax: +1 909 548-9484

References:
- [cobalt-security] SSH vs. .htaccess
  - From: Dave Anders

Prev by Date: Re: [cobalt-security] Telnet/SSH simple user permissions
Next by Date: Re: [cobalt-security] SSH vs. .htaccess
Previous by thread: [cobalt-security] SSH vs. .htaccess
Next by thread: Re: [cobalt-security] SSH vs. .htaccess

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index