Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id ; Mon, 19 Nov 2001 11:20:21 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id ; Mon, 19 Nov 2001 11:20:12 -0500 Received: from pincoya.inf.utfsm.cl ([200.1.19.3]:27909 "EHLO pincoya.inf.utfsm.cl") by vger.kernel.org with ESMTP id ; Mon, 19 Nov 2001 11:19:59 -0500 Message-Id: <200111191619.fAJGJBu8018551@pincoya.inf.utfsm.cl> To: vda cc: Alexander Viro , linux-kernel@vger.kernel.org Subject: Re: x bit for dirs: misfeature? In-Reply-To: Message from vda of "Mon, 19 Nov 2001 17:03:40 -0000." <01111917034005.00817@nemo> Date: Mon, 19 Nov 2001 13:19:10 -0300 From: Horst von Brand Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org vda said: [...] > Do you have even a single dir on your boxes with r!=x? Directories /dev, /lib, /bin, /etc under FTP home are --x. I'd do the same with cgi-bin et al for WWW... Some FTP sites (f.ex. ftp.sendmail.org) have limited distribution prereleases under an unreadable directory (--x). -wx is used for anonymous uploading under FTP It certainly has its uses. If you wanted to _really_ lock down a box, you'd start by doing the same --x game for some critical directories. -- Dr. Horst H. von Brand User #22616 counter.li.org Departamento de Informatica Fono: +56 32 654431 Universidad Tecnica Federico Santa Maria +56 32 654239 Casilla 110-V, Valparaiso, Chile Fax: +56 32 797513 - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/