Bryan Paxton <[EMAIL PROTECTED]> writes:
[...]
> > > -/etc/rc.d/init.d/* root.root 744
> > > +/etc/rc.d/init.d/* root.root 700
> >
> > really annoying. Security via obscurity. It also means you have to use root
> > more often.
> >
>
> Hmmmm, you usually have to be root to exec the scripts in there anyway?
> But for the sake of argument, s/700/711/ or s/700/751/
no 744 is nice so you can see what's in the script. And execute bit on scripts
in not enough, so 711 is of no use.
> > > -/home/* current 755
> > > +/home/* current 711
> >
> > that is friendly :-(
> > i hate it
> >
>
> You like it when anyone on the system can browse your $HOME ? : )
yes! How do you share your .emacs without this ;p
Most programs restrict further accessq when the data are
personal/sensitive (eg: mails, .netrc, .rhosts, .ssh ...)
I tend to agree with
RMS
"Certain circles of administrators feel that password protection and
security implementations in general are unethical and should not be used"
and Larry Wall (from perlmodlib(1))
"Perl doesn't have an infatuation with enforced privacy. It would prefer
that you stayed out of its living room because you weren't invited, not
because it has a shotgun."
