Re: Home dir Permissions

To: Tim Thomson <tim.thomson@usa.net>
Cc: Debian Mailing List <debian-user@lists.debian.org>
Subject: Re: Home dir Permissions
From: Remco Blaakmeer <remco@blaakmeer.student.utwente.nl>
Date: Sun, 1 Feb 1998 02:49:48 +0100 (CET)
Message-id: <[🔎] Pine.LNX.3.96.980201015423.4896C-100000@blaakmeer.student.utwente.nl>
In-reply-to: <[🔎] Pine.LNX.3.96.980130163237.7757E-100000@stalin.thomson.net>

On Fri, 30 Jan 1998, Tim Thomson wrote:

> Hi,
> I like to have personal web space turned on (ie http://server/~tim/), so I
> can easily access files (such as lynx bookmarks - point the bookmark file
> at /~/HTML/bookmarks.html, I can then pick this up on any remote system).
> 
> What I want to know is, what are the best permissions to set my home
> directory to and the HTML directory to.
> 
> Ideally, I would like my home directory to be: drwx------, so no-one can
> read anything - but then they can't get to HTML.
> 
> Can I get it to show only HTML in my home directory - the rest of the
> files are completely hidden - can't even see the names of files? Or is
> this asking a bit too much?
> 
> The only solution I can come up with is to keep chmodding files so only I
> can read them (usually files in your home directory are publicly
> readable, the directory is drwx------, but not with web access on!!!

Well, if you want any files in your home directory to be world-readable,
the home directory must be accessible. It doesn't have to be readable if
the program accessing the files knows their names in advance, however. So,
your home directory can be drwx--x--x and the ~/public_html directory can
also be drwx--x--x . Then, no other user will be able to see any files in
your home directory, but any user that knows you have a pub_html directory
can do get a file listing for that directory. So, you could have:

drwx--x--x  /home/tim
   # anyone can read any file if they know/guess the name and the file
   # permissions say they can read the file, but only you and root can get
   # a list of all files that are in this directory
-rw------- /home/tim/.Xauthority
   # this _needs_ to be unreadable for anyone but you
drw-------  /home/tim/mail/
   # this is also one that is good to be unreadable for 'world'
-rw-r--r--  /home/tim/.plan
   # world-readable info for 'finger'
drwx--x--x  /home/tim/public_html/
   # world-readable directory for www pages, doesn't have to be readable
   # if there is an index.html file
-rw-r--r--  /home/tim/public_html/index.html
   # of course, all files that must be accessible for a www-server need
   # to be world readable, the dirs only need to be executable

> BTW, please CC replies to me, I'm not on list right at the moment  :)

OK.

Remco


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- Home dir Permissions
  - From: Tim Thomson <tim.thomson@usa.net>

Prev by Date: Re: Win95 and Linux: Was: Verified Re: Unidentified subject!
Next by Date: Re: Netscape doesn't work (libc5/libc6)
Previous by thread: Re: Home dir Permissions
Next by thread: extremely off-topic: help
Index(es):
- Date
- Thread