Date: Wed, 24 Jun 1998 11:10:43 +0100 (BST) From: Scott Mitchell <scott@dcs.qmw.ac.uk> To: freebsd-security@FreeBSD.ORG Subject: Re: adduser chmod permissions Message-ID: <199806241010.LAA18738@hotpoint.dcs.qmw.ac.uk> In-Reply-To: <YpY6kda00UM20y81o0@andrew.cmu.edu> References: <Pine.BSF.3.95.980623195803.3076A-100000@orion.webspan.net> <YpY6kda00UM20y81o0@andrew.cmu.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Thomas Valentino Crimi said: > > I'd have to somehow think that the majority of uses (read: home >desktop users) give accounts to friends and family, and in such an >environment would encourage sharing. It's very often that someone would >say "It's right in my homedirectory". Things like say, mail are already >by rather strong default made private, so what else do most people on a >friend's machine plan to keep private? If you don't trust someone you >wouldn't give them account on your home box, correct? Absolutely. Just about every Unix system I've used (admittedly all university or private machines) had home directories world readable, with a umask of 002 (and periodic mail from the admins telling people to protect their mail directories...) But as you say, these are environments that encourage sharing; perhaps it is different in the real world. Maybe this could be an option in adduser -- home directory world-readable (y/n)? I thing the default .profile, etc set the umask to 002 anyway, so you would have to change that as well if you were really concerned about this. Cheers, Scott -- =========================================================================== Scott Mitchell | PGP Key ID |"If I can't have my coffee, I'm just <scott@dcs.qmw.ac.uk> | 0x54B171B9 | like a dried up piece of roast goat" QMW College, London, UK | 0xAA775B8B | -- J. S. Bach. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199806241010.LAA18738>