cron.allow and cron.deny
Calvin Webster
cwebster at ec.rr.com
Mon Sep 11 16:50:05 UTC 2006
System cron files are only accessible by root, but all users can setup
cron jobs using "crontab". The files and processes they could
potentially damage depend upon their access rights and permissions. One
simple method of denying all regular users use of cron would be to
remove the execute bit from /usr/bin/crontab (chmod o-x
/usr/bin/crontab). Otherwise you would probably need to craft SELinux
policy rules.
--Cal Webster
On Mon, 2006-09-11 at 12:35, Bill Tangren wrote:
> I am required to limit access to the cron daemon using these two files. My
> question is, which system accounts need access to cron, other than root?
>
> Thanks!
>
> Bill Tangren
More information about the redhat-list
mailing list