You have users logging in to your Linux system. Those users might have not have sudo rights, but they quite possibly could have free rein to poke around most of the system directory tree. You don’t want that. Why? Although those users might not be able to edit the vast majority of your configuration files, you certainly don’t want those users viewing them. Same holds true for your client data–you want that locked down.