Securing-a-server.md

@@ -90,11 +90,12 @@ Part 2: Deleting unnecessary tools
 
 Part 3: Advanced permissions
 
-* Set group for /home/ as "files" and give it group-level read (remote users + download users)
-* Give (recursive) *!user-level!* read-write for child folders of /home/
+* Set group for /home/ as "home" and give it group-level read  
+* Give (recursive) *!user-level!* read for child folders of /home/  
 * Set group for "/bin/ssh" as "ssh" and give it group-level execution rights
-* Set group "remote" and give group-level execution rights for :  
+* Set group for "/bin/sudo" as "gateway" and give it group-level execution rights
+* Set group "members" and give group-level execution rights for :  
   cd, ls, pwd, cat (File access)  
   rm, mv, cp, mkdir, rmdir, touch (File editing)  
   Notepad.exe, FileExplorer.exe, Terminal.exe
-* *Note: Browser.exe is not safe as it allows to unroute all ports from the inside of the system, blocking services forever!*
\ No newline at end of file
+* *Remember: Browser.exe is not safe!*
\ No newline at end of file