From owner-freebsd-questions@FreeBSD.ORG Mon Apr 19 03:03:48 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AB74616A4CE for ; Mon, 19 Apr 2004 03:03:48 -0700 (PDT) Received: from mxfep01.bredband.com (mxfep01.bredband.com [195.54.107.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3091643D5D for ; Mon, 19 Apr 2004 03:03:44 -0700 (PDT) (envelope-from z3l3zt@hackunite.net) Received: from mail.hackunite.net ([213.112.193.7] [213.112.193.7]) by mxfep01.bredband.com with SMTP <20040419100341.BATE26205.mxfep01.bredband.com@mail.hackunite.net>; Mon, 19 Apr 2004 12:03:41 +0200 Received: from 213.112.193.91 (SquirrelMail authenticated user z3l3zt@hackunite.net) by mail.hackunite.net with HTTP; Mon, 19 Apr 2004 12:03:43 +0200 (CEST) Message-ID: <2715.213.112.193.91.1082369023.squirrel@mail.hackunite.net> In-Reply-To: <40839F3A.30605@circlesquared.com> References: <2622.213.112.193.91.1082364839.squirrel@mail.hackunite.net> <40839F3A.30605@circlesquared.com> Date: Mon, 19 Apr 2004 12:03:43 +0200 (CEST) From: "Jesper Wallin" To: "Peter Risdon" User-Agent: SquirrelMail/1.4.2 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 Importance: Normal cc: freebsd-questions@freebsd.org Subject: Re: Why is the chmod values in /home insecure by default? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: z3l3zt@hackunite.net List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Apr 2004 10:03:48 -0000 > Jesper Wallin wrote: > >>Hello.. >> >>I'm running FreeBSD 5.2.1-RELEASE-p5 and when I create new user accounts with >> "adduser", >>the home directories are world readable/executable.. Sure, it might be useful if I want >>to publish a website in my public_html, but yet, it should be up to the user if he want >>to have his homedir world-readable, but by default it should be set to "chmod 700" or >>"chmod 750" if each user has their own group imho. However, I saw that "adduser" had a >>config file (/etc/adduser.conf) but the there is no manual entry for adduser.conf and I >>can't find any example for it.. How can I change the default permission for new >>home-directories? >> >> > > This might help: > > http://archives.neohapsis.com/archives/freebsd/2000-08/0361.html > > Basically, you need to change the permissions f the directory > /usr/share/skel and its contents. > > PWR. > > Hello.. First of all, thanks for your answer.. I tried to chmod both /etc/skel and /usr/share/skel to 700, yet it's not working.. I've checked in /usr/local/etc for any "skel" directory, but it's not there and the man page for "adduser" says it's /usr/share/skel (which doesn't work) .. Regards, Jesper Wallin