On Tuesday, 06.02.2007 at 11:08 +0100, Jarek Buczyński wrote: > How restrict default policy in debian: users (who have ssh account) > can read files in /etc, /root, /home/other_users etc. > > I'd like change this, simultaneously don't cause conflicts with other > working daemon
You can change the permissions for home directories so that users cannot see each others; you can also change the permissions for /root so that it is invisible to non-root users (chmod 700 ...) Also, check /etc/adduser.conf to change the default permissions that new homes are created with. However, I'd strongly advise against trying to restrict access to /etc - this will break lots of things! What are you actually trying to achieve? Or, to take another view, what exactly are you trying to prevent and why? Dave. -- Please don't CC me on list messages! ... Dave Ewart - [EMAIL PROTECTED] - jabber: [EMAIL PROTECTED] All email from me is now digitally signed, key from http://www.sungate.co.uk/ Fingerprint: AEC5 9360 0A35 7F66 66E9 82E4 9E10 6769 CD28 DA92
signature.asc
Description: Digital signature
