There are some files/directories with excessive permissions (write for others) and would like to remove the write permission for others, that is, go from 777 to 775. What I need to know is if this can cause any problems. This is the list of files/directories involved.
drwxrwxrwx 2 root xcomadm /opt/CA/XCOM/Q
-rwxrwxrwx 1 root system /opt/CA/XCOM/UninstallPatch/.com.zerog.registry.xml
-rwxrwxrwx 1 root system /opt/CA/XCOM/UninstallPatch/Logs/xcompatchinstaller.log
-rwxrwxrwx 1 root xcomadm /opt/CA/XCOM/Uninstaller/.com.zerog.registry.xml
-rwxrwxrwx 1 root system /opt/CA/XCOM/Uninstaller/Logs/xcominstaller.log
drwxrwxrwx 2 root xcomadm /opt/CA/XCOM/preferences
drwxrwxrwx 2 root xcomadm /opt/CA/XCOM/trace
XCOM™ Data Transport® for UNIX/Linux PC
drwxrwxrwx 2 root xcomadm /opt/CA/XCOM/Q
The reason for 777 permissions on this directory is to allow any users defined on the host system to be able to submit the transfer requests. If you downgrade the permissions to 775, only root and users defined in the xcomadm group can submit/schedule the XCOM transfers. If permissions is a compliance requirement for your organization, please identify all the users that should be able to run XCOM transfers and add them to xcomadm group.
-rwxrwxrwx 1 root system /opt/CA/XCOM/UninstallPatch/.
Ok, to change to 775 or even, 744.
-rwxrwxrwx 1 root system /opt/CA/XCOM/UninstallPatch/
Ok, to change to 775 or even, 744.
-rwxrwxrwx 1 root xcomadm /opt/CA/XCOM/Uninstaller/.com.
Ok, to change to 775 or even, 744.
-rwxrwxrwx 1 root system /opt/CA/XCOM/Uninstaller/Logs/
Ok, to change to 775 or even, 744.
drwxrwxrwx 2 root xcomadm /opt/CA/XCOM/preferences
This directory contains any user customizations made for XCOM GUI. If you are using XCOM GUI, all users that use the XCOM GUI History page must have read/write permissions. If you don't use the XCOM GUI History page, you can change permissions to 775 or even, 744.
drwxrwxrwx 2 root xcomadm /opt/CA/XCOM/trace
Ok, to downgrade permissions. You can also switch to 666 if that is allowed. This directory only contains the trace files that can be generated using XTRACE=9 in the transfer command. This is required only in case of troubleshooting the issues and can be used at the request of the Broadcom support team.