From owner-freebsd-security@FreeBSD.ORG  Fri Oct 22 03:18:46 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 100B416A4CE
	for <freebsd-security@freebsd.org>;
	Fri, 22 Oct 2004 03:18:46 +0000 (GMT)
Received: from mxfep04.bredband.com (mxfep04.bredband.com [195.54.107.79])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1D4C443D2F
	for <freebsd-security@freebsd.org>;
	Fri, 22 Oct 2004 03:18:45 +0000 (GMT)
	(envelope-from jesper@hackunite.net)
Received: from mail.hackunite.net ([213.112.198.219] [213.112.198.219])
	by mxfep01.bredband.com with SMTP
	<20041021194642.RBNZ18265.mxfep01.bredband.com@mail.hackunite.net>
	for <freebsd-security@freebsd.org>;
	Thu, 21 Oct 2004 21:46:42 +0200
Received: from 213.112.198.199
        (SquirrelMail authenticated user z3l3zt@hackunite.net)
        by mail.hackunite.net with HTTP;
        Thu, 21 Oct 2004 21:46:48 +0200 (CEST)
Message-ID: <1323.213.112.198.199.1098388008.squirrel@mail.hackunite.net>
Date: Thu, 21 Oct 2004 21:46:48 +0200 (CEST)
From: "Jesper Wallin" <jesper@hackunite.net>
To: freebsd-security@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Mailer: SquirrelMail 1.4.2
X-Priority: 3
Importance: Normal
X-Mailman-Approved-At: Fri, 22 Oct 2004 12:33:59 +0000
Subject: Default permissions of /home/user..
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Oct 2004 03:18:46 -0000

Hello..

I've asked this question before without getting any further help really..
When a new user is added using "adduser" on 5.x (havn't really checked
if it's the same under 4.x or not), the default homedir permission is 755
(drwxr-xr-x) which to me, looks a bit insecure? It's of course pretty easy
to solve it by a simple chmod, but yet, isn't there anyway to change the
default chmod value? Last time I asked about this, people told me to check
out the skel directory, but the only thing you can do in there is to change the
default chmod value of the files/directories _in_ the homedir, not the chmod
values of the actually homedir.. I would be glad if someone could give me
further assistanse how do solve this without manually modifying the "adduser"
script.. and if it this option doesn't exist, shouldn't it be added or is it just
me who want my homedir secure from other users? ;)


Best regards,
Jesper Wallin