LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 01-25-2003, 02:53 AM   #1
Mr happy
LQ Newbie
 
Registered: Jan 2003
Posts: 5

Rep: Reputation: 0
Newbie question - /tmp /var/tmp


Hi

I am using rhat 8 and was wondering why it is necessarry to have world writable and executable permissions anywhere.

- on my distro I have found /tmp and /var/tmp that fit this description.

Is it safe (will things start to break? ) or advised for these to be non executable?

Thanks

 
Old 01-25-2003, 03:34 AM   #2
markus1982
Senior Member
 
Registered: Aug 2002
Location: Stuttgart (Germany)
Distribution: Debian/GNU Linux
Posts: 1,467

Rep: Reputation: 46
If you've split up these 2 trees into 2 partitions like it's suggested from a security point of view you can change the mount flags to defaults,rw,nodev,noexec,nosuid ... this prevents a couple of attack methods! So as example for /etc/fstab:
Code:
...
LABEL=/tmp	/tmp	ext2	defaults,rw,nodev,noexec,nosuid		1 2
...
 
Old 01-27-2003, 06:48 AM   #3
Mr happy
LQ Newbie
 
Registered: Jan 2003
Posts: 5

Original Poster
Rep: Reputation: 0
Thanks will do.

Basically I am experimenting @ the moment - trying to setup so some users can't create then execute files. Good to know that in most cases u don't really need exec permission on /tmp.

Probably better on a new thread but is there any recommended reading material for locking down a workstation from a logged in users viewpoint? Choice of shell? Mounting option for home directories. Disabling remote access. That sort of thing.

I am pretty new to this but getting a hang of the basic stuff.

Thanks
 
Old 01-27-2003, 01:03 PM   #4
markus1982
Senior Member
 
Registered: Aug 2002
Location: Stuttgart (Germany)
Distribution: Debian/GNU Linux
Posts: 1,467

Rep: Reputation: 46
There is a lot of information regarding that around. There are excellent ones for example for Debian GNU/Linux ... I admit I like the Securing Debian Manual.

For RedHat there is a guide at www.openna.com ... the current version can be orderd ... I would suggest something like that. It covers a lot of different aspects.

Just use your favourite search engine - mine is google and look for something like locking down linux box
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
/var/tmp folder hardeep_ubhi Linux - General 4 10-02-2006 07:10 AM
/var/ and /tmp/ directories puishor Linux - General 5 06-25-2005 08:36 AM
kde, /tmp, /var/tmp and all that garba Linux - Software 4 06-17-2005 12:31 PM
/tmp /var/tmp Manuel-H Linux - General 3 04-23-2005 05:30 AM
Cleaning up /var and /tmp.... Whitehat Linux - General 3 01-04-2004 07:07 PM


All times are GMT -5. The time now is 09:11 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration