[BBLISA] limiting cron's capability?
John Stoffel
john at stoffel.org
Wed Jan 23 15:01:33 EST 2008
Scott> Is it possible to prevent cron from executing something in a
Scott> world-readable directory, or a directory branching off a
Scott> world-readable directory?
Umm... not that I know of. How would you expect cron to know this?
All it has is a list of times and commands to run. Now this list is
stored in a directory/file which should be locked down pretty well.
Also, if / is world reable, which it is by default, then you're asking
for cron to NOT run anything underneath that.
So why don't we backup and try to figure out what you're *really*
asking for here? It's obviously something security related, but what?
John
More information about the bblisa
mailing list