#!/bin/sh
##############################################################
# Security settings
# Lock down sensitive files since the source files must be world-readable
#
# Created by: Travis Sidelinger
# Verion History:
#  2006Nov15 : TLS : created from old RHEL script

### Variables ###


### Main ###

# Apply these specific file permissions
chmod 400 /etc/shadow
chmod 700 /root/.profile

# Remove access to "other" on these files
for file in /var/log /usr/bin/nmap /usr/sbin/tcpdump
do
    chmod -R o-rwx $file
done

### End ###