diff options
Diffstat (limited to 'init-sh')
-rw-r--r-- | init-sh/perm.1 | 50 | ||||
-rw-r--r-- | init-sh/perm.2 | 55 | ||||
-rw-r--r-- | init-sh/perm.3 | 60 | ||||
-rw-r--r-- | init-sh/perm.4 | 20 | ||||
-rw-r--r-- | init-sh/perm.5 | 14 |
5 files changed, 87 insertions, 112 deletions
diff --git a/init-sh/perm.1 b/init-sh/perm.1 index c63483a..0cae0d7 100644 --- a/init-sh/perm.1 +++ b/init-sh/perm.1 @@ -1,43 +1,18 @@ -# -# -# - Group for X user -# - Group for audio user -# - Group for dialout user -# - Group for video user -# Directories / # Welcome in Level 1 ### - /bin root.root 755 /boot root.root 755 /dev root.root 755 /dev/audio* root.audio 660 /dev/dsp* root.audio 660 /etc/ root.root 755 +/etc/conf.modules root.root 644 /etc/cron.daily/ root.root 755 /etc/cron.hourly/ root.root 755 /etc/cron.monthly/ root.root 755 /etc/cron.weekly/ root.root 755 -/etc/dhcpcd/ root.root 755 -/etc/init.d/ root.root 755 -/etc/profile root.root 644 -/home/ root.root 755 -/home/* current 755 -/lib root.root 755 -/mnt root.root 755 -/root root.root 755 -/sbin root.root 755 -/tmp root.root 1777 -/usr root.root 755 -/usr/* root.root 755 -/usr/X11R6/ root.root 755 -/usr/bin/ root.root 755 -/usr/bin/* root.root 755 -/usr/sbin/ root.root 755 -/var root.root 755 - -/etc/conf.modules root.root 644 /etc/crontab root.root 644 +/etc/dhcpcd/ root.root 755 /etc/esd.conf root.root 644 /etc/ftpaccess root.root 644 /etc/ftpconversions root.root 644 @@ -49,12 +24,14 @@ /etc/hosts.deny root.root 644 /etc/hosts.equiv root.root 644 /etc/inetd.conf root.root 644 +/etc/init.d/ root.root 755 /etc/inittab root.root 644 /etc/ld.so.conf root.root 644 /etc/lilo.conf root.root 644 /etc/modules.conf root.root 644 /etc/motd root.root 644 /etc/printcap root.root 644 +/etc/profile root.root 644 /etc/rc.d/ root.root 755 /etc/securetty root.root 644 /etc/sendmail.cf root.root 644 @@ -64,7 +41,24 @@ /etc/sshd_config root.root 644 /etc/syslog.conf root.root 644 /etc/updatedb.conf root.root 644 - +/home/ root.root 755 +/home/* current 755 +/lib root.root 755 +/mnt root.root 755 +/root root.root 755 +/sbin root.root 755 +/tmp root.root 1777 +/usr root.root 755 +/usr/* root.root 755 +/usr/X11R6/ root.root 755 +/usr/bin/ root.root 755 +/usr/bin/* root.root 755 +/usr/sbin/ root.root 755 +/var root.root 755 +/var/log root.root 755 +/var/log/* root.adm 644 +/var/log/security/ root.root 700 +/var/log/security/* root.root 600 diff --git a/init-sh/perm.2 b/init-sh/perm.2 index dcaf293..4c06b7b 100644 --- a/init-sh/perm.2 +++ b/init-sh/perm.2 @@ -1,43 +1,18 @@ -# -# -# - Group for X user -# - Group for audio user -# - Group for dialout user -# - Group for video user -# Directories / # Welcome in Level 2 ### - /bin root.root 755 /boot root.root 755 /dev root.root 755 /dev/audio* root.audio 660 /dev/dsp* root.audio 660 /etc/ root.root 755 +/etc/conf.modules root.root 644 /etc/cron.daily/ root.root 755 /etc/cron.hourly/ root.root 755 /etc/cron.monthly/ root.root 755 /etc/cron.weekly/ root.root 755 -/etc/dhcpcd/ root.root 755 -/etc/init.d/ root.root 755 -/etc/profile root.root 644 -/home/ root.root 755 -/home/* current 755 -/lib root.root 755 -/mnt root.root 755 -/root root.root 700 -/sbin root.root 755 -/tmp root.root 1777 -/usr root.root 755 -/usr/* root.root 755 -/usr/X11R6/ root.root 755 -/usr/bin/ root.root 755 -/usr/bin/* root.root 755 -/usr/sbin/ root.root 755 -/var root.root 755 - -/etc/conf.modules root.root 644 /etc/crontab root.root 644 +/etc/dhcpcd/ root.root 755 /etc/esd.conf root.root 644 /etc/ftpaccess root.root 644 /etc/ftpconversions root.root 644 @@ -49,12 +24,14 @@ /etc/hosts.deny root.root 644 /etc/hosts.equiv root.root 644 /etc/inetd.conf root.root 644 +/etc/init.d/ root.root 755 /etc/inittab root.root 644 /etc/ld.so.conf root.root 644 /etc/lilo.conf root.root 644 /etc/modules.conf root.root 644 /etc/motd root.root 644 /etc/printcap root.root 644 +/etc/profile root.root 644 /etc/rc.d/ root.root 755 /etc/securetty root.root 644 /etc/sendmail.cf root.root 644 @@ -64,9 +41,21 @@ /etc/sshd_config root.root 644 /etc/syslog.conf root.root 644 /etc/updatedb.conf root.root 644 - - - - - - +/home/ root.root 755 +/home/* current 755 +/lib root.root 755 +/mnt root.root 755 +/root root.root 700 +/sbin root.root 755 +/tmp root.root 1777 +/usr root.root 755 +/usr/* root.root 755 +/usr/X11R6/ root.root 755 +/usr/bin/ root.root 755 +/usr/bin/* root.root 755 +/usr/sbin/ root.root 755 +/var root.root 755 +/var/log root.root 755 +/var/log/* root.adm 640 +/var/log/security root.root 700 +/var/log/security/* root.root 600 diff --git a/init-sh/perm.3 b/init-sh/perm.3 index 94d12e7..aab758e 100644 --- a/init-sh/perm.3 +++ b/init-sh/perm.3 @@ -1,43 +1,18 @@ -# -# -# - Group for X user -# - Group for audio user -# - Group for dialout user -# - Group for video user -# Directories / # Welcome in Level 3 ### - /bin root.root 755 /boot root.root 755 /dev root.root 755 /dev/audio* root.audio 660 /dev/dsp* root.audio 660 /etc/ root.root 755 +/etc/conf.modules root.root 644 /etc/cron.daily/ root.root 755 /etc/cron.hourly/ root.root 755 /etc/cron.monthly/ root.root 755 /etc/cron.weekly/ root.root 755 -/etc/dhcpcd/ root.root 755 -/etc/init.d/ root.root 755 -/etc/profile root.root 644 -/home/ root.root 755 -/home/* current 700 -/lib root.root 755 -/mnt root.root 755 -/root root.root 700 -/sbin root.root 755 -/tmp root.root 1777 -/usr root.root 755 -/usr/* root.root 755 -/usr/X11R6/ root.root 755 -/usr/bin/ root.root 755 -/usr/bin/* root.root 755 -/usr/sbin/ root.root 755 -/var root.root 755 - -/etc/conf.modules root.root 644 /etc/crontab root.root 644 +/etc/dhcpcd/ root.root 755 /etc/esd.conf root.root 644 /etc/ftpaccess root.root 644 /etc/ftpconversions root.root 644 @@ -49,12 +24,14 @@ /etc/hosts.deny root.root 644 /etc/hosts.equiv root.root 644 /etc/inetd.conf root.root 644 +/etc/init.d/ root.root 755 /etc/inittab root.root 644 /etc/ld.so.conf root.root 644 /etc/lilo.conf root.root 644 /etc/modules.conf root.root 644 /etc/motd root.root 644 /etc/printcap root.root 644 +/etc/profile root.root 644 /etc/rc.d/ root.root 755 /etc/securetty root.root 644 /etc/sendmail.cf root.root 644 @@ -64,5 +41,34 @@ /etc/sshd_config root.root 644 /etc/syslog.conf root.root 644 /etc/updatedb.conf root.root 644 +/home/ root.root 755 +/home/* current 700 +/lib root.root 755 +/mnt root.root 755 +/root root.root 700 +/sbin root.root 755 +/tmp root.root 1777 +/usr root.root 755 +/usr/* root.root 755 +/usr/X11R6/ root.root 755 +/usr/bin/ root.root 755 +/usr/bin/* root.root 755 +/usr/sbin/ root.root 755 +/var root.root 755 +/var/log root.root 755 +/var/log/* root.root 600 +/var/log/security root.root 700 +/var/log/security/* root.root 600 + + + + + + + + + + + diff --git a/init-sh/perm.4 b/init-sh/perm.4 index 8e422df..cf6b02f 100644 --- a/init-sh/perm.4 +++ b/init-sh/perm.4 @@ -1,11 +1,5 @@ -# -# -# - Group for X user -# - Group for audio user -# - Group for dialout user -# - Group for video user # Welcome in Level 4, aka secure & usable. - +### /bin root.root 711 /boot root.root 700 /dev root.root 711 @@ -47,7 +41,6 @@ /etc/sshd_config root.adm 640 /etc/syslog.conf root.adm 640 /etc/updatedb.conf root.adm 640 - /home/ root.adm 751 /home/* current 700 /lib root.adm 751 @@ -63,10 +56,7 @@ /usr/sbin/ root.adm 751 /usr/sbin/* root.root 755 /var root.root 755 - - - - - - - +/var/log root.root 700 +/var/log/* root.root 600 +/var/log/security root.root 700 +/var/log/security/* root.root 600 diff --git a/init-sh/perm.5 b/init-sh/perm.5 index 1965860..fffdfde 100644 --- a/init-sh/perm.5 +++ b/init-sh/perm.5 @@ -1,11 +1,5 @@ -# -# -# - Group for X user -# - Group for audio user -# - Group for dialout user -# - Group for video user # Welcome in Level 5, aka paranoid. - +### /bin root.root 711 /boot root.root 700 /dev root.root 711 @@ -47,7 +41,6 @@ /etc/sshd_config root.root 600 /etc/syslog.conf root.root 600 /etc/updatedb.conf root.root 600 - /home/ root.root 711 /home/* current 700 /lib root.root 711 @@ -64,4 +57,7 @@ /usr/sbin/* root.root 700 /usr/sbin/sendmail root.root 755 /var root.root 755 - +/var/log root.root 700 +/var/log/* root.root 600 +/var/log/security root.root 700 +/var/log/security/* root.root 600 |