|
|
10.5: A deeper look at drop box permissions issues
The drop-box idea is terrible, because in order for it to work, each user's home directory has to be world-readable at the top level, which may expose sensitive information. The same goes for personal web sites. For security, the mode of the home directory should be rwx------, and delete the drop box. There are much better ways for users to exchange files.
10.5: A deeper look at drop box permissions issues
The user's home directory doesn't have to readable, only executable. Permissions could be rwx--x--x or rwx--x---.
10.5: A deeper look at drop box permissions issues
That's correct, but it doesn't change my point. The drop box mechanism makes data at the top level of the user's home directory accessible to other users. That would include many files with predictable names. |
SearchFrom our Sponsor...Latest Mountain Lion HintsWhat's New:HintsNo new hintsComments last 2 daysLinks last 2 weeksNo recent new linksWhat's New in the Forums?
Hints by TopicNews from Macworld
From Our Sponsors |
|
Copyright © 2014 IDG Consumer & SMB (Privacy Policy) Contact Us All trademarks and copyrights on this page are owned by their respective owners. |
Visit other IDG sites: |
|
|
|
Created this page in 0.06 seconds |
|