From owner-freebsd-security Fri Sep 8 14:29:52 2000 Delivered-To: freebsd-security@freebsd.org Received: from epsilon.lucida.qc.ca (epsilon.lucida.qc.ca [216.95.146.6]) by hub.freebsd.org (Postfix) with SMTP id 4422D37B507 for ; Fri, 8 Sep 2000 14:29:50 -0700 (PDT) Received: (qmail 36054 invoked by uid 1000); 8 Sep 2000 21:29:44 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 8 Sep 2000 21:29:44 -0000 Date: Fri, 8 Sep 2000 17:29:42 -0400 (EDT) From: Matt Heckaman X-Sender: matt@epsilon.lucida.qc.ca To: "Jonathan M. Slivko" Cc: freebsd-security@freebsd.org Subject: Re: Home Directories -- in the point of security? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Spam-Rating: localhost 1.6.2 0/1000/N Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 8 Sep 2000, Jonathan M. Slivko wrote: : What chmod value should I use when modifying home directories to allow for : a personal website on a webserver without comprimsing security of the : files from other users, even reading the files is out of the question : entirely. Mode 0711 for directories will do what you want, without allowing anyone else read access. Just make sure to educate your users about permissions, so that they leave the settings right -inside- the dir. I force this by making all my users umask 027, big help. :) : ---- : Jonathan M. Slivko : Technical Support: CoreSync Corparation : NSI ID: JSR730 * Matt Heckaman - mailto:matt@lucida.qc.ca http://www.lucida.qc.ca/ * * GPG fingerprint - A9BC F3A8 278E 22F2 9BDA BFCF 74C3 2D31 C035 5390 * -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.2 (FreeBSD) Comment: http://www.lucida.qc.ca/pgp iD8DBQE5uVpIdMMtMcA1U5ARAk09AKDRA4XUiVyvGGXCbZ7sDcYbQBli7QCeJweK iWCXaHmt9dBAnTITUlNFzDQ= =IjxP -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message