On Mon, Apr 29, 2002, Daniel Pearson wrote about "Re: a 'mount' question":
> On Sun, Apr 28, 2002, Muli Ben-Yehuda <[EMAIL PROTECTED]> wrote the following:
> > ObLinuxTriviaQ: Using one standard unix command, hide a all of the
> > files in a single user's home directory, so that they will be totally
> > inaccessible until the admin decides otherwise. Answers on or off
> > list, as you wish.
>
> chmod 0000 /home/baduser
And 5 minutes later, Mr. Baduser logs in, gets "/" as his home directory
(because his own home directory isn't execuatable), runs
chmod +rwx /home/baduser
and he has access to all his files again. Now quite what Muli was after.
The solution I suggested to Muli was
mv /home/baduser /root/.ssh/
Where /root/.ssh is an example of a directory that is not accessible to
ordinary users. baduser can never access his files again, even if he does
manage to log in. It even survives a reboot, which the "mount" solution
doesn't.
--
Nadav Har'El | Monday, Apr 29 2002, 17 Iyyar 5762
[EMAIL PROTECTED] |-----------------------------------------
Phone: +972-53-245868, ICQ 13349191 |Seen on the back of a dump truck:
http://nadav.harel.org.il |<---PASSING SIDE . . . . . SUICIDE--->
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
