[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Default Homedir Permissions

On Feb 17, Ian Jackson <ijackson@chiark.greenend.org.uk> wrote:

> I disagree with this conclusion, because I disagree with the
> underlying implication that the general readability of files is not
> needed.

> Perhaps it might be reasonable to try to find a way for accounts like
> msql and www-data not to be able to access home directories (add
> "daemon" to their supplementary group list and set the permissions of
> /home 0705 to root.daemon, perhaps), but is this really worthwhile ?
We have ACLs, but I believe that the local requirements vary enough
that it is not worth the effort.


Attachment: signature.asc
Description: Digital signature

Reply to: