Re: [SLE] more on umask

From: James Knott (james.knott_at_rogers.com)
Date: 08/25/05

  • Next message: Hamish: "Re: [SLE] Latest apt update removed most of my KDE icons" 
    Date: Thu, 25 Aug 2005 08:21:51 -0400
To: suse-linux-e@suse.com

    Randall R Schulz wrote:
    > James,
    >
    > On Wednesday 24 August 2005 10:44, James Knott wrote:
    >>...
    >>
    >>If you want to share files with the group, create a directory for
    >>that group and every member of that group has access to that shared
    >>directory. A user shouldn't have to take action, to keep others out
    >>of his home directory.
    >
    > The validity of that claim rests solely on the assumptions you make
    > about the relationships between the users of the system in question.

    Well, for my own personal computers, there's no problem. But what about
    a family system, where mom & dad might not want all there files
    available to the kids? What about at work, where the home directory is
    mounted from a server? Should the manager's or HR files be available to
    everyone?

    >
    >
    >>As an experiment, create another user on your system and create a
    >>text document in the home directory for that user. Then, log in as
    >>yourself and try reading that file. Then log in as that other user
    >>and try accessing files in your home directory. Tell me again about
    >>the security of that setup.
    >
    > That so-called "experiment" is not controlled and will tell the person
    > who conducts it only about the incidental aspects of their local
    > configuration, not about anything universal to the use of groups and
    > umask.

    What it was intended to show, is that in the default SuSE configuration,
    any user can read another's home directory. Nothing more. 

    -- 
Check the headers for your unsubscription address
For additional commands send e-mail to suse-linux-e-help@suse.com
Also check the archives at http://lists.suse.com
Please read the FAQs: suse-linux-e-faq@suse.com
  • Next message: Hamish: "Re: [SLE] Latest apt update removed most of my KDE icons"

    Relevant Pages

    • Re: Problem with smb shares.
      ... Are these shares going to be the users home directories? ... could be problems with some programs that assume the home directory ... Is there any chance that you can mount this share somewhere like ... James Wilkinson ...
      (Fedora)
    • Re: [SLE] more on umask
      ... To do this in SuSE, ... when they're supposed to be so focused on security. ... every member of the groug users has access to ... the home directory of every other user. ...
      (SuSE)
    • Re: User Private Groups for SuSE?
      ... Leendert Meyer wrote: ... the result was that KDE could not be started. ... >> checked myself for member of this new group. ... > can deny other members of the group 'users' access to my home directory ...
      (alt.os.linux.suse)
    • Re: strange backspace behavior in vim
      ... > other than that my home directory has been consistent through all ... Hex 0x7f is ASCII delete, ... james | When did you last back up your system? ...
      (Fedora)
    • Re: Home Directory Permissions problem - shocking discovery!
      ... see everything in another staff member's home directory. ... logged in as the staff member in question, ... ANYONE's home directory, ... "yyy" is the account of the all-powerful user. ...
      (microsoft.public.windows.server.general)