From owner-freebsd-security@FreeBSD.ORG  Thu Oct 21 22:14:30 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6A67C16A4CE
	for <freebsd-security@freebsd.org>;
	Thu, 21 Oct 2004 22:14:30 +0000 (GMT)
Received: from mxfep01.bredband.com (mxfep01.bredband.com [195.54.107.70])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 6F25843D58
	for <freebsd-security@freebsd.org>;
	Thu, 21 Oct 2004 22:14:29 +0000 (GMT)
	(envelope-from jesper@hackunite.net)
Received: from mail.hackunite.net ([213.112.198.219] [213.112.198.219])
	by mxfep01.bredband.com with SMTP
	<20041021194642.RBNZ18265.mxfep01.bredband.com@mail.hackunite.net>
	for <freebsd-security@freebsd.org>;
	Thu, 21 Oct 2004 21:46:42 +0200
Received: from 213.112.198.199
        (SquirrelMail authenticated user z3l3zt@hackunite.net)
        by mail.hackunite.net with HTTP;
        Thu, 21 Oct 2004 21:46:48 +0200 (CEST)
Message-ID: <1323.213.112.198.199.1098388008.squirrel@mail.hackunite.net>
Date: Thu, 21 Oct 2004 21:46:48 +0200 (CEST)
From: "Jesper Wallin" <jesper@hackunite.net>
To: freebsd-security@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: SquirrelMail 1.4.2
X-Priority: 3
Importance: Normal
X-Mailman-Approved-At: Fri, 22 Oct 2004 12:33:59 +0000
Subject: Default permissions of /home/user..
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Oct 2004 22:14:30 -0000

Hello..

I've asked this question before without getting any further help really..
When a new user is added using "adduser" on 5.x (havn't really checked
if it's the same under 4.x or not), the default homedir permission is 755
(drwxr-xr-x) which to me, looks a bit insecure? It's of course pretty easy
to solve it by a simple chmod, but yet, isn't there anyway to change the
default chmod value? Last time I asked about this, people told me to check
out the skel directory, but the only thing you can do in there is to change the
default chmod value of the files/directories _in_ the homedir, not the chmod
values of the actually homedir.. I would be glad if someone could give me
further assistanse how do solve this without manually modifying the "adduser"
script.. and if it this option doesn't exist, shouldn't it be added or is it just
me who want my homedir secure from other users? ;)


Best regards,
Jesper Wallin