Re: FTP/User access, was: Re: [users] Re: Why can't I?

To: debian-user@lists.debian.org
Subject: Re: FTP/User access, was: Re: [users] Re: Why can't I?
From: D-Man <dsh8290@rit.edu>
Date: Wed, 13 Jun 2001 13:47:35 -0400
Message-id: <[🔎] 20010613134735.F27218@harmony.cs.rit.edu>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 025801c0f42f$c7a69fc0$0201a8c0@cyanide.loc>; from deflect@chello.nl on Wed, Jun 13, 2001 at 07:39:21PM +0200
References: <[🔎] 20010613165144.A18049@fishbowl.madduck.net> <[🔎] 00bd01c0f41b$9adc0a20$5b6510ac@flowserve.com> <[🔎] 01bd01c0f41f$f9484340$0201a8c0@cyanide.loc> <[🔎] 20010613131149.C27218@harmony.cs.rit.edu> <[🔎] 025801c0f42f$c7a69fc0$0201a8c0@cyanide.loc>

On Wed, Jun 13, 2001 at 07:39:21PM +0200, Auke van der Gaast wrote:
| >By default (and quite naturally)
| > users _can't_ see someone else's home directory unless that person
| > explicitly makes it readable.
| 
| Well, maybe that's the problem... because they _can_ see others' 
| homedir, don't know why, but it's true. I've used adduser to create 
| the users. Thought that should be alright...

Home dirs should have "711" as the permissions (owner
read-write-execute group and world execute only).  I just checked on
my system (I am really the only user right now) and the perms are 755
(actually I'm not sure what the 's' in the 010 column is (group
execute)).  I think this is a bug in adduser/useradd (whichever one is
the Debian-specific) and should be fixed.

Do this :

(the '#' prompt implies the user is root)
# cd /home
# chmod 711 *
# ls -ld *

and verify that the perms are :

drwx--x--x


The "execute" on directories means they can 'cd', but the lack of
'read" means they can't "ls".  The execute is needed if they are
allowed to have personal web sites which are typically rooted at
~/public_html.

HTH,
-D

Reply to:

Follow-Ups:
- Re: FTP/User access, was: Re: [users] Re: Why can't I?
  - From: MaD dUCK <madduck@madduck.net>
- Re: FTP/User access, was: Re: [users] Re: Why can't I?
  - From: Dave Carrigan <dave@rudedog.org>

References:
- Re: [users] Re: Why can't I?
  - From: MaD dUCK <madduck@madduck.net>
- Re: [users] Re: Why can't I?
  - From: "Hall Stevenson" <hallstevenson@mindspring.com>
- Re: [users] Re: Why can't I?
  - From: "Auke van der Gaast" <deflect@chello.nl>
- Re: [users] Re: Why can't I?
  - From: D-Man <dsh8290@rit.edu>
- FTP/User access, was: Re: [users] Re: Why can't I?
  - From: "Auke van der Gaast" <deflect@chello.nl>

Prev by Date: Re: PDAs
Next by Date: Re: stopping named from starting
Previous by thread: FTP/User access, was: Re: [users] Re: Why can't I?
Next by thread: Re: FTP/User access, was: Re: [users] Re: Why can't I?
Index(es):
- Date
- Thread