Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751

To: Olaf van der Spek <OvdSpek@LIACS.NL>, debian-devel@lists.debian.org
Subject: Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751
From: Olaf van der Spek <OvdSpek@LIACS.NL>
Date: Fri, 17 Nov 2006 07:43:20 +0100
Message-id: <[🔎] 455D5A08.3040209@LIACS.NL>
In-reply-to: <[🔎] 20061117050605.GC13589@archimedes.ucr.edu>
References: <20061115151958.22207.99046.reportbug@localhost> <20061115175642.GA25828@www.lobefin.net> <20061115220524.GB20412@torres.l21.ma.zugschlus.de> <455B8F9C.9050303@LIACS.NL> <20061115223856.GC20412@torres.l21.ma.zugschlus.de> <[🔎] 455C9C42.6020005@LIACS.NL> <[🔎] 20061117050605.GC13589@archimedes.ucr.edu>

Don Armstrong wrote:

On Thu, 16 Nov 2006, Olaf van der Spek wrote:

Adduser choses 751, which is wrong IMO, as the directories are still
readable, they're just not listable.

The directories aren't readable either; their contents may be, but you
can't see what the contents are.

I guess that depends on what a user's definition of a directory beingreadable means.

And it sounds a lot like security by obscurity.

~/public_html (probably) won't work with 751, but that's the choice
and problem of the administrator that choses no.


$ mkdir testing; echo 'hi' > testing/hello; chmod 0664 testing/hello; sudo chown root:root -R testing; sudo chmod 0751 testing;
$ cat testing/hello
hi
$ ls testing
ls: testing: Permission denied
$ sudo chmod 750 testing;
$ cat testing/hello
cat: testing/hello: Permission denied

Any questions?


Yes, do you think 750 or 751 should be used?

Consider the case where a user wants an easy way to ensure that none ofthe files in his home directory are world-readable.

--
Olaf van der Spek
http://xccu.sf.net/

Reply to:

Follow-Ups:
- Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751
  - From: Don Armstrong <don@debian.org>
- Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751
  - From: Gabor Gombas <gombasg@sztaki.hu>
- Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751
  - From: Stephen Gran <sgran@debian.org>

References:
- Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751
  - From: Olaf van der Spek <OvdSpek@LIACS.NL>
- Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751
  - From: Don Armstrong <don@debian.org>

Prev by Date: Re: Bug#398793: adduser: Non system wide readable (home) directories should not be 751
Next by Date: Re: Proposed new POSIX sh policy
Previous by thread: Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751
Next by thread: Re: Bug#398793: [Adduser-devel] Bug#398793: adduser: Non system wide readable (home) directories should not be 751
Index(es):
- Date
- Thread