[grsec] effective dual roles / suggested enhancements

[jnf]

> Remember that normal DAC permissions still apply, grsecurity only takes
> away.  Therefore, if possible, simply remove all permissions except for
> the user, e.g. home directories with mode 0700.

Ah yea, I'm trying to avoid that if possible, nothing like ls /home and
only seeing your home directory, however I guess thats just a silly
sentiment of mine, I'll probably end up doing that.

As for the $HOME thing, that would be an object set I defined?

define HOME {
 /path/to/home    rwcd
}

?

> David
>

jnf