User Addition; Miscellaneous Settings - Novell LINUX ENTERPRISE DESKTOP 11 - SECURITY GUIDE 17-03-2009 Manual
Hide thumbs
Also See for LINUX ENTERPRISE DESKTOP 11 - SECURITY GUIDE 17-03-2009:
- Administration manual (338 pages) ,
- Deployment manual (246 pages) ,
- Application manual (364 pages)
Table of Contents
Advertisement
Allow Remote Graphical Login
When checked, the graphical login manager (e.g. gdm or kdm) can be accessed
from the network. This is a potential security risk.
8.6 User Addition
Set minimum and maximum values for user and group IDs. These default settings would
rarely need to be changed.
8.7 Miscellaneous Settings
Other security settings that don't fit the above-mentioned categories are listed here:
File Permissions
SUSE Linux Enterprise Desktop comes with three predefined sets of file permissions
for system files. These permission sets define whether a regular user may read log
files or start certain programs. Easy file permissions are suitable for standalone
machines. This settings allows regular users, for example, to read most system
files. See the file /etc/permissions.easy for the complete configuration.
The Secure file permissions are designed for multi-user machines with network
access. A thorough explanation of these settings can be found in /etc/
permissions.secure. The Paranoid settings are the most restrictive ones
and should be used with care. See /etc/permissions.secure for more in-
formation.
User Launching updatedb
The program updatedb scans the system and creates a database of all file locations
which can be queried with the command locate. When updatedb is run as
user nobody, only world-readable files will be added to the database. When run as
user root, almost all files (except the ones root is not allowed to read) will be
added.
Configuring Security Settings with YaST
79
Advertisement
Table of Contents
