[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Security worry

Subject: Re: [cobalt-users] Security worry
From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
Date: Mon Sep 4 12:38:18 2000
Organization: nobaloney.net

Stephen Mc Carron wrote:

> I'm running a raq3 with all the latest OS updates etc. When I logged into
> the box using a clients user/pass with SSH, I was able to browser around and
> view any of the files on the server. I could go and look at the root
> folders, look at the web files of my other clients, etc.

Quite normal for a unix/linux system.

> Why is this possible? Is it possible to restrict each user I grant shell
> access to (via the GUI) to only stay in their account space??

Because the files you can see need to be world-readable in order for
linux/unix to operate.

You could of course write an operating system with a different model and
different constraints.

You might even get rich doing it.  Bill Gates did <smile>.

Jeff
-- 
Jeff Lasman <jblists@xxxxxxxxxxxxx>
nobaloney.net
P. O. Box 52672
Riverside, CA  92517
voice: (909) 787-8589  *  fax: (909) 782-0205

References:
- [cobalt-users] Security worry
  - From: Stephen Mc Carron

Prev by Date: RE: [cobalt-users] Newbie Question
Next by Date: Re: [cobalt-users] Security worry
Previous by thread: Re: [cobalt-users] Unusual System Events after update
Next by thread: RE: [cobalt-users] RAQ2 DRAM

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index