On Sat, Dec 31, 2011 at 02:31:04PM +0100, Reindl Harald wrote:
> what have "/etc/login.defs" to do with the fact that there is
> simply no need to have a personal group for a user at all?
You're probably not thinking about multiple users on a relatively secure
system. I *think*, if I recall correctly, that AT&T System III & V put
everyone in the same group. This is a possible security breach, since any
executable/directory/file that might grant rights to that group would be
open to exploit by anyone in the group.
So, from a security point of view, it makes a lot more sense to assign each
user to their own group, and only let them in shared groups by deliberate
assignment. It doesn't cost anything in terms of resources or performance.
Cheers,
--
Dave Ihnat
dih...@dminet.com
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
