[sf-lug] File Permissions - surprises
Rick Moen
rick at linuxmafia.com
Tue Jun 7 18:09:40 PDT 2022
Quoting Ken Shaffer (kenshaffer80 at gmail.com):
> Then there's the stuff which changes with kernel params, like
> fs.protected_regular see:
> https://unix.stackexchange.com/questions/503111/group-permissions-for-root-not-working-in-tmp
LWN article about that non-default security protection mechanism:
https://lwn.net/Articles/748141/
More about that and related kernel-hardening:
https://blog.frehi.be/2019/01/30/linux-security-hardening-recommendations/
As mentioned on the latter blog, reading Kees Cook's blog on the subject
is also frequently enlightening. https://outflux.net/blog/
More information about the sf-lug
mailing list