..now I'm dealing with it, i might as well do it all.. ;-) I was looking at some files in the /etc dir. See some files: -rw-r--r-- 1 root root 1323 Dec 21 14:43 smb.conf -rw------- 1 root root 113 Aug 6 2000 smbpasswd -rw-r--r-- 1 root root 2 Aug 6 2000 snmpd.agentinfo -rw-r--r-- 1 root root 2018 Aug 6 2000 snmpd.conf drwxr-xr-x 2 root root 4096 Oct 10 20:05 snort -rw-r--r-- 1 root root 7004 Aug 6 2000 sockd.conf -rw-r--r-- 1 root root 3079 Aug 6 2000 socks.conf -rw-r--r-- 1 root root 65872 Dec 17 07:42 squid.conf drwxr-xr-x 2 root root 4096 Oct 11 02:55 ssh -rw------- 1 root root 0 Aug 6 2000 su1.cache -r-------- 1 root root 980 Aug 6 2000 su1.priv -rw-r----- 1 root root 294 Aug 6 2000 sudoers -rw-r--r-- 1 root root 1012 Nov 3 20:23 syslog.conf -rw-r--r-- 1 root root 6 Oct 27 20:33 syslog.conf.lock -rw-r--r-- 1 root root 808940 Aug 6 2000 termcap -rw-r--r-- 1 root root 258 Feb 20 1995 ttytype drwxr-xr-x 2 uucp uucp 4096 Oct 10 19:47 uucp -rw-r--r-- 1 root root 4352 Aug 6 2000 vimrc -rw-r--r-- 1 root root 17369 Aug 6 2000 webalizer.conf -rw-r--r-- 1 root root 3313 Aug 6 2000 wgetrc My users don't need to read smb.conf or snmpd.agentinfo.... or almost any other file in here, as well as many other system-directories. Why is my passwd-file marked as rw-r--r-- ?? Shouldn't it be rw-r----- ? When an ordinary user logs in, he can just read my passwd-file, configurationfiles, almost everything is in the open. What can I do? I reckon: cd / chmod -R o-rw . isn't going to help me here. Is there a script that sets the correct filepermissions so that users cannot read files they have nothing to do with? TIA, Rogier Maas