[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ssh and default home directory permissions (revisited?)

On Mon, 26 May 1997, Christian Hudon wrote:

> On May 26, Pete Templin wrote
> > 
> > > I've removed group write permissions from my home dir because of the
> > > programs like qmail and ssh which don't like it.  I don't think
> > > anything would break because of removing these permissions, so maybe
> > > adduser should make home directories mode 755 (or 750)?
> > 
> > Let's be careful with 750...many webservers run equivalent to nobody.
> > Setting user home directories will mean additional user training (a.k.a.
> > more questions for the sysadmin...) when users are creating webpages.
> How about 751, then? The web servers will still run fine. I don't think
> home directories should be created world-writable by default, though. Even
> though it's "not a problem" with the one user, one group scheme.

I assume you mean group-writable (corresponding with 750, 751, or 755).
All I know is we had a problem with the Mac filesharing software on our
DEC server here at BU a while ago, and we had to do some serious chmod'ing
to reverse the mode 775 or worse .login files that many people had.  As a
result, we've got to be fairly explicit in our directions for "Create your
own web page with 2 eggs, sugar..."  Well, you know what I mean.  :)


Peter J. Templin, Jr.                   Client Services Analyst
Computer & Communication Services       tel: (717) 524-1590
Bucknell University			templin@bucknell.edu

TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . Trouble? 
e-mail to templin@bucknell.edu .

Reply to: