* Create the groups and add them to users accordingly
* Set group for /Public/ as "ftp" and give it group-level read
* Set group for /Public/Downloads/ as "ftp" and give it (recursive) group-level read
* If there are dedicated gateways to reach the LAN, replace the builtin ssh command with our "wanssh" tool
Part 2: Deleting unnecessary tools
...
...
@@ -85,7 +86,7 @@ Part 2: Deleting unnecessary tools
* It would be a good idea to delete/reset the /Config/ and /.Trash/ folders for all users, just in case (and the log file too)
* Nslookup, whois, Mail.exe aren't useful on a server, maaaybe on a dedicated proxy... delete them to free drive space! Same with CodeEditor.exe and build
* Are members allowed the use this server as a *last-point* proxy to reach a ftp? If not, delete the ftp command
* If "destructive security" is desired, delete /etc/passwd and the services in /server/ (to prevent a shutdown)
* If "destructive security" is allowed, write garbage in /etc/passwd and delete reboot + the services in /server/ (to prevent a shutdown)
