with Tags:
read_write
X

Lock down the directory, not just the files
I just read this comment about Unix permissions in a whitepaper to do with securing databases. The comment is about Progress databases, which may not exist in your environment, but the comment is worth noting anyway: Though counterintuitive, file modification is controlled by permissions on that file, but file creation and deletion are controlled by permissions on the parent directory. In other words, it is entirely legal to delete a file that you cannot modify if you have write access to the directory without having write access to the file... [More]
Tags:  security permissions read_write chmod umask unix_permissions chown |