James Knott wrote:
Forgot to mention, the default configuration in SuSE has everyone in the "users" group and then gives group members read access to all the home directories. In Red Hat, each user is given his own group, which keeps others out of his home directory. To do this in SuSE, you either have to change the user's group after creating the user or use Webmin to create the user. It's also a good idea to change /etc/skel, to remove the group permissions, when a user is created. I have no idea why SuSE fails on this issue, when they're supposed to be so focused on security.
I fail to see what this has got to do with security. It completely defeats the group idea to give every user its own group. But if you want to keep everyone out of your files and directories nothing stops you from chmod'ing the lot to y00, y=0..7 Regards, -- Jos van Kan www.josvankan.tk