Thanks to Jim
Reavis for this link.
“Best practices in Linux file system security dictate a
philosophy of configuring file system access rights in the most
restrictive way possible that still allows legitimate users
and processes to function properly.”
“To have the most comprehensive plan for Linux file system
security, a system administrator needs to modify a default
installation’s settings, proactively monitor and audit file system
changes and have multiple methods to recover from a file system
attack.”