[Prev][Next][Index][Thread]

Re: XDMCP security?



On Tue, 24 Sep 1996, Arik Baratz wrote:

> >         Why not have the user's home directory owned by root? The user will be able to modify any existing files once you create them for her, but not create, rename or remove anything herself. 
> 
> Let's go one step farther - Why give home directories at all, if all you
> want is to provide POP services??? Make the home directory invalid - all
> they need is /var/mail (sysV) or /var/spool/mail (Linux,BSD)

wiseguys! and if the guy wants to keep a homepage? a private FTP
directory? a .forward file? deleting a homedir is not a solution...


   -------------------------------------------------------------
   Ira Abramov          <ira@scso.com>        Scalable Solutions
   SITE Web Presence ("webspace for rent") http://www.site.co.il
   Beeper 48484 at 03-610-6666, 02-6294-666  FAX (972)2-643-0471
   POBox 3600, Jerusalem 91035, Israel       Tel (972)2-642-6822
   http://www.scso.com/~ira   Check out: http://www.linux.org.il


References: