Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 27 Jun 1998 16:48:09 +0000
From:      "swilson" <swilson@mail.dreamscape.com>
To:        freebsd-isp@FreeBSD.ORG
Subject:   Re: Homedir 'hiding'
Message-ID:  <199806272049.QAA18746@ultra1.dreamscape.com>
In-Reply-To: <Pine.BSF.3.95q.980627114211.22203B-100000@mercury.jorsm.com>
References:  <199806271542.LAA02817@bilver.magicnet.net>
next in thread | previous in thread | raw e-mail | index | archive | help 
> Date:          Sat, 27 Jun 1998 12:43:55 -0500 (CDT)
> From:          Jeff Lynch <jeff@mercury.jorsm.com>
> Reply-to:      Jeff Lynch <jeff@mercury.jorsm.com>
> To:            freebsd-isp@FreeBSD.ORG
> Subject:       Re: Homedir 'hiding'

> On Sat, 27 Jun 1998, Bill Vermillion wrote:
> > >
> > > > Try to 700 the parent directory (/home)
> > 
> > > If you turn off read access to the world to home dirs, user
> > > "nobody", will not be able to read public_html to dish out their
> > > home pages.
> > 
> > On a directory 'read' access means being able to list the
> > directory.   By having execute permission only on a directory you
> > can read/execute files in that directory by specifying the path
> > name to the file.  If you type ls nothing happens.  If you type
> > ls <protected dir>/filename you will see the file.  Wildcards don't
> > work.
> 
> I stand corrected. Also note that execute perms for other is required
> on:
>    /home
>    /home/username
>    /home/username/public_html
> 
> I seem to remember perms not working this well in my old ATT
> System V R3 days. Perhaps it's just old age setting in. Thanks for
> pointing it out. I just reset things on our end with:
> 
> find /home -type d -path "/home/*/public_html" -exec chmod o-rw {} {}/.. \;
> 
> And modified our home-brew newuser script to 
> 
> chmod 751 /home/$userdir /home/$userdir/public_html
> 
> =========================================================================
> Jeffrey A. Lynch			      JORSM Internet
> email: jeff@jorsm.com		Northwest Indiana's Full-Service Provider
> Voice: (219)322-2180		   927 Sheffield Avenue, Dyer, IN 46311
> Autoresponse: info@jorsm.com		   http://www.jorsm.com
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-isp" in the body of the message
> 
> 

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199806272049.QAA18746>