Re: How do I prevent User 'A' from seeing User 'B' /home contents
On Friday 10 October 2003 19:47, Ryan Nowakowski wrote:
> On Fri, Oct 10, 2003 at 10:53:46AM -0500, Wathen, Metherion wrote:
> > Hi all,
> > I need to know how to change permissions of each user so that
> > they only see their own home directory. As I write this i'm
> > thinking that I have to change the groups they are in, is that
> > correct?
>
> chmod 700 /home/*
>
Someone please correct me if I'm being stupid (I'm not an experienced
sysadmin), but since Debian by default lets each user have their own
group, then, if a user has included another user in their group, it is
probably because that user wants the other user to have some access to
his files.
Therefore, I would rather suggest:
chmod 750 /home/*
That way, if the user has not included anybody in his group, he will
have full privacy, for those who have added others to their group, they
will have be able to peek.
BTW, if you have a lot of user who understand the system, I would
recommend against doing any changes. At my university, some M$ lusers
panicked when they discovered that all their files were open, and put
pressure on the sysadmins to change all file permissions of all users'
files. For us actually using the system in collaborative projects, it
took us hours of searching through files and reopen things to correct
them damage. It's better to educate the lusers.
Best,
Kjetil
--
Kjetil Kjernsmo
Astrophysicist/IT Consultant/Skeptic/Ski-orienteer/Orienteer/Mountaineer
kjetil@kjernsmo.net webmaster@skepsis.no editor@learn-orienteering.org
Homepage: http://www.kjetil.kjernsmo.net/ OpenPGP KeyID: 6A6A0BBC
Reply to: