Re: chmod, or better solutions ?

To: debian-user@lists.debian.org
Subject: Re: chmod, or better solutions ?
From: Sjoerd Hardeman <sjoerd@lorentz.leidenuniv.nl>
Date: Mon, 13 Oct 2008 12:33:58 +0200
Message-id: <[🔎] 48F32416.9080100@lorentz.leidenuniv.nl>
In-reply-to: <[🔎] 48F201F9.3040403@snurf.info>
References: <[🔎] 48F201F9.3040403@snurf.info>

Shams Fantar wrote:

Hi all,

I'd like to know if it's very fine and "clean" to chmod -R 700 / ; Or
are there any better solutions ? My purpose beeing that local users
can't access/read any file which isn't in their own home directory.

Regards,

Isn't it enough to just secure the home dirs? You probably want theusers to execute programs in /usr. Then I would just do

find /home -type d -exec chmod 700 {} \;
find /home -type f -exec chmod 600 {} \;

so that all files in /home are only accessible to the user. Then, ofcourse, you need to change the default umask to 0077 to make sure allnew files have the right permissions.


Sjoerd

Attachment: signature.asc
Description: OpenPGP digital signature

Reply to:

References:
- chmod, or better solutions ?
  - From: Shams Fantar <sfantar@snurf.info>

Prev by Date: Re: unable to play some flash videos [solved]
Next by Date: Iceweasel+flashplugin-nonfree: 100% CPU usage with some flash/swf embedded videos or animations
Previous by thread: Re: chmod, or better solutions ?
Next by thread: Shutdown hooks
Index(es):
- Date
- Thread