Re: Default permissions of /home/user..

From: Robert Watson (rwatson_at_freebsd.org)
Date: 10/23/04

  • Next message: Mark Magiera: "Re: Default permissions of /home/user.." 
    Date: Sat, 23 Oct 2004 16:03:15 +0100 (BST)
To: Jesper Wallin <jesper@hackunite.net>

    On Thu, 21 Oct 2004, Jesper Wallin wrote:

    > I've asked this question before without getting any further help
    > really.. When a new user is added using "adduser" on 5.x (havn't really
    > checked if it's the same under 4.x or not), the default homedir
    > permission is 755 (drwxr-xr-x) which to me, looks a bit insecure? It's
    > of course pretty easy to solve it by a simple chmod, but yet, isn't
    > there anyway to change the default chmod value? Last time I asked about
    > this, people told me to check out the skel directory, but the only thing
    > you can do in there is to change the default chmod value of the
    > files/directories _in_ the homedir, not the chmod values of the actually
    > homedir.. I would be glad if someone could give me further assistanse
    > how do solve this without manually modifying the "adduser" script.. and
    > if it this option doesn't exist, shouldn't it be added or is it just me
    > who want my homedir secure from other users? ;)

    I'm a fan of creating "public", "public_html", and "private" directories
    in the user's home directory when their account is created, with
    appropriate permissions. That way I can just tell users "put the file in
    your private directory if you want it to be private". I use custom
    scripts for accounts here, but you may just be able to create those
    prototype directories in skel and have adduser do the right thing.

    Robert N M Watson FreeBSD Core Team, TrustedBSD Projects
    robert@fledge.watson.org Principal Research Scientist, McAfee Research

    _______________________________________________
    freebsd-security@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-security
    To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

  • Next message: Mark Magiera: "Re: Default permissions of /home/user.."

    Relevant Pages

    • Default permissions of /home/user..
      ... When a new user is added using "adduser" on 5.x (havn't really checked ... to solve it by a simple chmod, but yet, isn't there anyway to change the ... default chmod value of the files/directories _in_ the homedir, ... further assistanse how do solve this without manually modifying the "adduser" ...
      (FreeBSD-Security)
    • Default permissions of /home/user..
      ... When a new user is added using "adduser" on 5.x (havn't really checked ... to solve it by a simple chmod, but yet, isn't there anyway to change the ... default chmod value of the files/directories _in_ the homedir, ... further assistanse how do solve this without manually modifying the "adduser" ...
      (FreeBSD-Security)
    • Default security: other users can ACCESS MY HOMEDIR?!
      ... i didn't realize all my users had full access to my homedir! ... that kinda sucks, me who thought i had everything private and locked down ... and how do i set my system to chmod all new homedirs to that chmod? ...
      (freebsd-questions)
    • Re: Default permissions of /home/user..
      ... > sh script in it. ... The addition above should chmod its homedir ... you'll want to chmod $uhome not $_home. ... To unsubscribe, ...
      (FreeBSD-Security)
    • Re: Missing home dir when account created by vbscript
      ... user and populate the homeDir properties of the account. ... creating the directory and there are no errors populating the homeDir ... Are you using the LDAP provider and assigning values to the homeDrive and ...
      (microsoft.public.scripting.vbscript)