by ad » Thu, 14 Feb 2002 12:31:29
What is the proper way of setting the permissions in home directories? I
would like to have all the home directories readable/writable/executable by the
owners (600), but anything under the public dirs readable by everybody
(how about w+x ?). Would this be a good and secure practice?
Thanks.
by Kasper Dupon » Thu, 14 Feb 2002 22:15:35
> Hi,
> What is the proper way of setting the permissions in home directories? I
> would like to have all the home directories readable/writable/executable by the
> owners (600), but anything under the public dirs readable by everybody
> (how about w+x ?). Would this be a good and secure practice?
> Thanks.
Permitions on home directories should normally be one of
700, 750, 755. The users umask should be one of 077, 027,
022. The RedHat default of 002 only makes sense when you
create singleuser groups, and BTW will give you trouble
when trying to set up an authorized_keys file for ssh.
Personally I prefer a umask of 077 and then change
permitions whenever someone needs more access. The safest
for a homedirectory probably is 700, but if anybody else
need access to any files inside you will need to change
it.
--
Kasper Dupont
by Tim Hayne » Thu, 14 Feb 2002 23:48:26
> Permitions on home directories should normally be one of 700, 750, 755.
> The users umask should be one of 077, 027, 022. The RedHat default of 002
> only makes sense when you create singleuser groups, and BTW will give you
> trouble when trying to set up an authorized_keys file for ssh.
Personal favourites:Quote:> Personally I prefer a umask of 077 and then change permitions whenever
> someone needs more access. The safest for a homedirectory probably is
> 700, but if anybody else need access to any files inside you will need to
> change it.
chmod -R og= ~
chmod 711 ~ ~/bin
chmod -R og+rX ~/public_html ~/.plan ~/.forward ~/bin/*
umask 077
So much so, I've even got
| zsh, potato 2:46PM piglet % alias perm
| perm='chmod -R og+rX '
to allow me to undo the effects of the umask with slightly fewer key-
presses.
Never had any permission problems yet ;8)
~Tim
--
Through the paths of the redeemed |http://spodzone.org.uk/
1. Permissions on rlogin and ftp home dir
Dear all,
if possible could you help me on this?
1 - Is is possible to restric the rlogin access per user like we can
you with the /etc/ftpuser file ? I mean everyone who rlogins to my
machine gets the login and password prompt, but I just let in the users
I want even if those users belong to that machine.
2 - Where can I configure the directories that a user can "browse" when
he ftps to my machine? Lets say that I want that userA can only
access /home/userA when he ftps to my machine.
Thank you very much.
PS - If you think that this things are too easy, can you please tell me
were I can read about it? Again, thanks a Lot
Sent via Deja.com http://www.deja.com/
Before you buy.
2. does linux support also other graphics screens as X11
3. changing permissions on home dir on sunos 5.7
4. Hardware question relating to alphaserver 1200 console port
6. HOW TO: if file1 newer than file2
7. AMD (automounter) setup for home dirs
9. after changing a user's home dir, cd ~user in ksh still use old dir
10. how to get apache to translate server/dir to home dir?
11. Apache /~user/public_html dir permissions setup
12. Apache MultiViews: /dir returns /dir/, not dir.html
13. weird... can't put a cd \dir\dir\dir\ in a .csh file...