Changing /tmp permission
- From: billdangerous@xxxxxxxxx
- Date: Thu, 24 Jul 2008 02:40:03 -0700 (PDT)
Hi everybody !
First of all excuse me for my English it is quite bad.
I'd like to secure my tmp directory. I know I could make a partition
for this directory with noexec,nosuid,nodev, but I'd like to be more
secure.
I don't want that any users can access to my /tmp directory. So I'd
like to have permissions like 770 instead of 777. I know that many
applications need to write in /tmp directory, so I would like to
create a group named tmp for example where I would add users that need
to write in this directory. Instead of authorizing all users, I want
to limit access to only a determined group of users. So I have to
change group owner of /tmp to become tmp group instead of root group.
There is still a problem with that and the sticky bit. How can I
forbid access to deleting files that we don't own ?
Are there some behaviors or difficulties that I don't think about ?
Thank you in advance !
Bill
.
- Follow-Ups:
- Re: Changing /tmp permission
- From: Michael Tosch
- Re: Changing /tmp permission
- From: Lew Pitcher
- Re: Changing /tmp permission
- From: jpd
- Re: Changing /tmp permission
- Prev by Date: Re: Available consultant Vijay for Unix System Admin with sun Solories Expireance.
- Next by Date: Re: Changing /tmp permission
- Previous by thread: pam_unix hanging but nsswitch.conf says files
- Next by thread: Re: Changing /tmp permission
- Index(es):
Relevant Pages
|
