Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: secure file permissions!
Operating Systems Linux Red Hat secure file permissions! Post 302484153 by shreeda on Thursday 30th of December 2010 01:51:15 AM
Old 12-30-2010
secure file permissions!
Hi experts,
I have RHEL6 system which I want to tighten by having strict permissions for some important files. Looks like, RHEL has below permissions by default:-
Code:
/etc/passwd:644:root:root
   /etc/shadow:000:root:root
      /etc/services:644:root:root
   /etc/hosts.allow:644:root:root

I am thinking of setting the permissions something like:-
Code:
  /etc/passwd:444:root:sys
  /etc/shadow:400:root:sys
    /etc/services:444:root:sys
  /etc/hosts.allow:644:root:sys

Could anyone please throw some light on the side effects I may face with these changes? I am especially concerned about first 3 entries. Also, I was wondering whether using sys as group is a good thing or not!
 

9 More Discussions You Might Find Interesting

1. Solaris

Secure FTP Problem using Sun SSH on Client system F-Secure on Server system

I am using shell script to do secure ftp. I have done key file setup to do password less authentication. Following are the FTP Details: FTP Client has Sun SSH. FTP Server has F-Secure. I am using SCP Command to do secure copy files. When I am doing this, I am getting the foll error scp:... (2 Replies)
Discussion started by: ftpguy
2 Replies

2. Cybersecurity

Secure File Transfer for Mainframe systems

Hi guys, I would like to transfer files from UNIX machine to Mainframe system (using UNIX machine as client). The transfer process needs to be secure (i.e. data sent thro network should be encrypted using 128-bit encryption algorithm). I came to know that SFTP server is not available for Mainframe... (3 Replies)
Discussion started by: sydneymoon
3 Replies

3. Shell Programming and Scripting

Question about secure file transfer

Hi all, I am running a large scale business and some time I have to transfer large and very important data files to my business partner. I fear about my data because there are many of my business competitors who will definitely try to steal my important data. So there is huge amount of risk... (0 Replies)
Discussion started by: camden
0 Replies

4. Shell Programming and Scripting

Secure File Transfer Protocol

Hi, Is there any protocol other than SFTP to transfer the file using secured connection SSH. ? Regards, Arthik (2 Replies)
Discussion started by: arthikbabu
2 Replies

5. HP-UX

To give the "unzip" permissions & "create" file permissions

Hi, I am a Unix Admin. I have to give the permissions to a user for creating new file in a directory in HP-Ux 11.11 system since he cannot able to create a new file in the directory. Thanks in advance. Mike (3 Replies)
Discussion started by: Mike1234
3 Replies

6. Solaris

No such file in secure directories ?

Dear All, I have a problem with starting process of crystal report by running script(ccm.sh, bobjerestart.sh). I found these error ld.so.1: nohup: warning: libhoard.so.1: open failed: No such file in secure directories ld.so.1: sh: warning: libhoard.so.1: open failed: No such... (0 Replies)
Discussion started by: unitipon
0 Replies

7. UNIX for Advanced & Expert Users

Secure FTP corrupts file

Sun Microsystems Inc. SunOS 5.9 I am hoping someone has come across this before. I have a script that transfers several gz files via Secure FTP across to an SFTP server on an NT machine. The transfers show as successful: pack12_200812160337.tar.gz | 768kB | 768kB/s | ETA: 00:00:01 | 37%... (5 Replies)
Discussion started by: ronnie_uk
5 Replies

8. Shell Programming and Scripting

ksh; Change file permissions, update file, change permissions back?

Hi, I am creating a ksh script to search for a string of text inside files within a directory tree. Some of these file are going to be read/execute only. I know to use chmod to change the permissions of the file, but I want to preserve the original permissions after writing to the file. How can I... (3 Replies)
Discussion started by: right_coaster
3 Replies

9. UNIX for Dummies Questions & Answers

Copying a file from secure host to desktop

I have extremely limited programming experience so please go slowly! I am remotely logged in to a secure network cluster via my username at my school through terminal. I'm trying to download a file from my account on the cluster to my desktop on a guest account on my mac. I tried doing this:... (1 Reply)
Discussion started by: smashingdols
1 Replies

LEARN ABOUT DEBIAN

cgcreate

CGCREATE(1)							 libcgroup Manual						       CGCREATE(1)

NAME

       cgcreate - create new cgroup(s)

SYNOPSIS

       cgcreate [-h] [-s] [-t <tuid>:<tgid>] [-a <agid>:<auid>] [-f mode] [-d mode] -g <controllers>:<path> [-g ...]

DESCRIPTION

       The command creates new cgroup(s) defined by the options -g.

       -a <agid>:<auid>
	      defines  the  name of the user and the group which own the rest of the defined control group's files. These users are allowed to set
	      subsystem parameters and create subgroups.  The default value is the same as has the parent cgroup.

       -d, --dperm=mode
	      sets the permissions of a control groups directory.  The permissions needs to be specified as octal numbers e.g.	-d 775.

       -f, --fperm=mode
	      sets the permissions of the control groups parameters.  The permissions needs to be specified as octal numbers e.g.   -f	775.   The
	      value  is  not  used as given because the current owner's permissions are used as an umask (so 777 will set group and others permis-
	      sions to the owners permissions).

       -g <controllers>:<path>
	      defines control groups to be added.  controllers is a list of controllers and path is the relative path to  control  groups  in  the
	      given controllers list. This option can be specified multiple times.

       -h, --help
	      display this help and exit

       -s, --tperm=mode
	      sets  the  permissions  of  the control group tasks file.  The permissions needs to be specified as octal numbers e.g.  -f 775.  The
	      value is not used as given because the current owner's permissions are used as an umask (so 777 will set group  and  others  permis-
	      sions to the owners permissions).

       -t <tuid>:<tgid>
	      defines  the  name of the user and the group, which owns tasks file of the defined control group. I.e. this user and members of this
	      group have write access to the file.  The default value is the same as has the parent cgroup.

FILES

SEE ALSO

       cgrules.conf (5) cgexec (1) cgclassify (1)

Linux								    2009-03-15							       CGCREATE(1)
All times are GMT -4. The time now is 09:38 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy