Re: security thing
- From: Michael Heiming <michael+USENET@xxxxxxxxxxxxxx>
- Date: Sun, 8 Oct 2006 11:50:04 +0200
In alt.os.linux PTM <ptmusta@xxxxxxxxxxxxxxxxxx>:
Is there any way to set Linux so, that an user can see only her own home
directory but nothing else. I find annoying that the system files can be
seen by anybody. I find no reason, why She should see for example the
/etc directory.
How should "ls -l" work if the system can't map UID/GID via
worldwide readable passwd/groups? Of course you could setup a
chroot chage for each user...
Another thing is that now she can see the directories of other users, if
they have not set the visibility. This is a kind of backward behaviour.
Change permissions of users $HOME if you want, just a single
command 'man chmod'.
In my mind everything personal should be secured until you give other
users rights to read it. This is how we behave in real life.
Can be configured through /etc/login.defs via umask setting
or/and system wide profile. Iirc 'useradd' and probably
associated tools will honor this while creating users $HOME.
Some distro setup new users $HOME 0700 which does what you ask
and set umask accordingly.
One reason for many default permissions might be unix was
developed by researchers for researchers, to make sharing
information easy. Not to restrict users in the first place.
However, it is up to you to simply change those defaults to your
needs, which can be done through automatic installation
procedures such as kickstart (RH/Fedora) if you like.
--
Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94)
mail: echo zvpunry@xxxxxxxxxx | perl -pe 'y/a-z/n-za-m/'
#bofh excuse 187: Reformatting Page. Wait...
.
- Follow-Ups:
- Re: security thing
- From: PTM
- Re: security thing
- References:
- security thing
- From: PTM
- security thing
- Prev by Date: Re: WindowsXP on VMware in linux?
- Next by Date: Re: security thing
- Previous by thread: security thing
- Next by thread: Re: security thing
- Index(es):
Relevant Pages
|
