On 05/11/09 12:48, Rajko M. wrote:
On Wednesday 04 November 2009 03:30:42 Basil Chupin wrote:
Read, write, execute I can change on files that belong to me, but I can't change owner.
Most interesting!
Thank you, Rajko, for pointing this out
So, the security in Linux is NOT what, for many years, I have believed it to be.
I, and thousands of others, have been duped for all this time.
Not really. You have to understand file ownership and access permissions to be able to use it to protect your privacy, and in example above you missed that any application, including console, file manager, can do whatever you can do. That was repeated time and again.
That is the reason why browsing the Internet from the same account you use to work on private data doesn't provide any real privacy.
If you really want to have private data then create another user account, fix permissions so that no one except you can even see private directories, which means user rwx, group ---, other --- . which is 700 in octal numbers, and never access Internet, or use network enabled applications with that account. Not to forget set /tmp and few other places that contain traces of that account activity to be cleaned up after you log out, and you have privacy.
[pruned] Thanks, Rajko, for spelling all this out. Much food for thought here. I'll be re-reading all this very carefully in the coming days. Thanks again. BC -- The chief cause of problems is solutions. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org