Follow the principle of least privilege

This section describes the principle of least privilege.

The principle of least privilege states that users should be given the least amount of privilege to perform their jobs. Overly ambitious granting of responsibilities, roles, grants - especially early on in an organization's life cycle when people are few and work needs to be done quickly - often leaves a system wide open for abuse. User privileges should be reviewed periodically to determine relevance to current job responsibilities.

To restrict access, use the following default file permissions in a Unix environment:

• 740 for executable files
• 640 for regular files