[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Setting permissions

Subject: RE: [cobalt-users] Setting permissions
From: nobody <bs@xxxxxxxxxxx>
Date: Fri Jan 5 10:33:00 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Fri, 5 Jan 2001, Weihan Leow so wrote:

} On another hand.  What if I chmod'ed each directory 711 by hand.  Wouldn't
} that prevent people from ls'ing the dirs?

It will indeed. We don't provide shell access on our Cobalt's but on
the machines we do we set the user directory 711. We also set the
system directories that we don't want anyone poking around in to 751
which prevents users from browsing them. A simple shell script can
copy the contents of user history files every minute or two and send
the results to you by email, baselines can be maintained via any
number of freely available programs (search freshmeat.net for
baseline), etc. The point is there all kinds of tricks you can use
to monitor your shell users. We loudly let our shell users know that
we're watching every time they login via a customized message of the
day. We've only had to shut down one user in the two years we've
been running them, but shell accounts are dangerous and shell users
will do things they shouldn't be doing so you really need to be on
your toes.

Follow-Ups:
- RE: [cobalt-users] Setting permissions
  - From: Weihan Leow

References:
- RE: [cobalt-users] Setting permissions
  - From: Weihan Leow

Prev by Date: RE: [cobalt-users] Setting permissions
Next by Date: Re: [cobalt-users] Setting permissions
Previous by thread: RE: [cobalt-users] Setting permissions
Next by thread: RE: [cobalt-users] Setting permissions

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index