Re: ssh and default home directory permissions (revisited?)
On Mon, 26 May 1997, Christian Hudon wrote:
> On May 26, Pete Templin wrote
> >
> > > I've removed group write permissions from my home dir because of the
> > > programs like qmail and ssh which don't like it. I don't think
> > > anything would break because of removing these permissions, so maybe
> > > adduser should make home directories mode 755 (or 750)?
> >
> > Let's be careful with 750...many webservers run equivalent to nobody.
> > Setting user home directories will mean additional user training (a.k.a.
> > more questions for the sysadmin...) when users are creating webpages.
>
> How about 751, then? The web servers will still run fine. I don't think
> home directories should be created world-writable by default, though. Even
> though it's "not a problem" with the one user, one group scheme.
I assume you mean group-writable (corresponding with 750, 751, or 755).
All I know is we had a problem with the Mac filesharing software on our
DEC server here at BU a while ago, and we had to do some serious chmod'ing
to reverse the mode 775 or worse .login files that many people had. As a
result, we've got to be fairly explicit in our directions for "Create your
own web page with 2 eggs, sugar..." Well, you know what I mean. :)
Pete
--
Peter J. Templin, Jr. Client Services Analyst
Computer & Communication Services tel: (717) 524-1590
Bucknell University templin@bucknell.edu
--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . Trouble?
e-mail to templin@bucknell.edu .
Reply to: