/etc/hosts permissions 1

AlbertAguirre · Dec 21, 2004

How should the /etc/hosts permissions be set?

775? 665? 440???

grepper · Dec 21, 2004

Should be 775. -rwxrwx-rx

kHz · Dec 21, 2004

kHz · Dec 21, 2004

Why would you ever have execute permissions on a file that is only read?

It is 660.

RodKnowlton · Dec 21, 2004

And why would you want to break gethostbyname() and its family for everyone but root and the system group?

664

Rod Knowlton
IBM Certified Advanced Technical Expert pSeries and AIX 5L
CompTIA Linux+
CompTIA Security+

kHz · Dec 21, 2004

I was going to add, 664 may be better. Thanks, Rod. And use root:system.

kHz · Dec 21, 2004

Although, the Defense Information Systems Agency (DISA) Field Security Operations Unix Security Checklist doesn't specifically list /etc/hosts permission requirements.

RodKnowlton · Dec 22, 2004

DISA also doesn't have list specifications of any kind for /etc/nsswitch.conf or /etc/netsvc.conf.

I guess client side spoofing just isn't a concern to them.

Rod Knowlton
IBM Certified Advanced Technical Expert pSeries and AIX 5L
CompTIA Linux+
CompTIA Security+

grepper · Dec 22, 2004

Why have execute for /etc/hosts? Don't know ask IBM. It's default with a fresh image.

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

/etc/hosts permissions 1

AlbertAguirre

Programmer

grepper

Technical User

kHz

MIS

kHz

MIS

RodKnowlton

MIS

kHz

MIS

kHz

MIS

RodKnowlton

MIS

grepper

Technical User

Similar threads

Part and Inventory Search

Sponsor