Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
PANIC!..permissions changed ... hard drive problem
I wanted to protect my data from others... so i opened a konsole as 'su' and i went in the root directory. There.. I typed ' chmod -R go-wxr /*' . (so that group and others cannot read write or execute).. Then I closed the Konsole and i could not enter any folder ... even on the desktop. So i restarted ... I could not log in as a user...so i logged in as root.
I went back in konsole and did the following ..in the root directory:
'chmod -R a+wrx /* ' and now everything is OK.
However I guess my data are exposed to everyone now...So what do i have to do to protect my data from others??
(I am using suse 9.3 ... The PC i am using is my personal one (I am the root)..but i am connected on a students network server..)
Thx in advance
Last edited by mfrangos79; 07-17-2005 at 09:53 PM.
Being on the network, you might consider reinstalling just in case someone might of replaced a system command with one of their own. ( Enabling the 'o' "other" for write was a big mistake. )
Most configuration files in /etc for example are readable by anyone who needs them, but some aren't. Files that deal with authentication such as passwords for samba shares or the secure shell private key are not world readable.
If you are concerned about your data, you could check the permissions of your home directory. You might consider creating a group name that is the same as your user name. Then you can use the 'find' command inside to locate all files and directories owned by 'users' in your user directory ( /home/username ) and change it to your new group. This way if a program saves a file with group readable permissions, only you will be able to read it. This is how Mandrake sets up new users. SuSE creates new users differently. You can make the changes after adding the new group in YaST.
Another option is to change the umask value inside of ~/.profile. If you mask out group permissions for newly created files, someone else in the 'user' group won't be able to read your files.
Also make sure that you aren't running unnecessary services such as telnet that you don''t need. As well, check your firewall settings to make it more difficult for an unauthorized user to connect to your computer.
Don't make global permission changes or ownership or group changes though out your system ( i.e. on the root directory). Many files are owned by system users with special permissions to enable the system to run securely.
OK.. I did as you said.
I reinstalled..
After that .. I created a group 'Mygroup'
and I created 2 accounts .... 'mine' and 'guest'
I have this problem though that i never had before ..(after installing Linux)
... I have an 80G 2nd hard disc for movies and pictures... I am sure I did not format it during reinstallation.
I cannot see any file in it ... and when I go from konqueror to /media... when i try to click on the icon of this hard disk it says the following :
'' Could not mount device.
The reported error was:
mount: wrong fs type, bad option, bad superblock on /dev/hdb1,
missing codepage or other error
In some cases useful info is found in syslog - try
dmesg | tail or so''
I think it has to do something with permission ... but the strange thing is that i cannot see anything inside it from konsole even as a root...
If it helps this is what it says in fstab :
/dev/hdb1 /windows/C vfat users,gid=users,umask=0002,utf8=true 0 0
Again I am 100% sure that i did not format it ..and that probably everything got messed up after changing the groups.. !
Permissions settings on the second drive would effect whether or not you can access it but shouldn't prevent the mounting of the drive at boot. The message you are getting is a catch all message. Usually, a bad option or file system type was included in the fstab entry. Are you sure that the windows partition uses FAT32? For XP, the NTFS file system is the default. Normally an NTFS mount will be read-only in linux.
The "utf8=true" doesn't look right.
Try something like:
Ok .... i solved my problems with the original old fasioned way...
I formated and reinstalled Linux ..now everything works fine ... + I installed windows as well ...
I think a cobination of the 2 is a good choice ..What I cannot do easily with one I can do it with the other...
Thx anyway
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.