World Readable Home Directories
I just did a fresh install of Debian 64 (Etch) and am building a new email server for my company however I plan to use Maildir style mailboxes under /home and realized that Debian unlike other distributions creates /home as 755 rather than 700. Is there a reason for this? I would think that the /home/$user is the one place you don't want anyone but the owner to access.
Is there a simple way to change this? |
personally I don't allow the user accounts to have login rights to the mail server, I set them all to /sbin/nologin. They can access their mail just fine with pop3 or imap without the need to login directly to the server.
I think you would have to alter the value of umask in roots .bashrc file so the directories are created by default with 700.. |
dpkg-reconfigure adduser
This will only work for newly created users. I'm using testing, not sure it was there already in etch. |
That's a MUCH better solution than my thoughts on umask.
It is available on etch as well.. |
Quote:
|
I ran "dpkg-reconfigure adduser" and selected "no" for system wide readable home directories & then created two accounts...
Code:
email:/home# ls -l What am I doing wrong? |
Quote:
Quote:
On my default installation, each new user gets created his group, not like on your system (users group). I think this is the default, from Unix SysV R 6 group semantics. In your case, you need to modify manually adduser.conf and put manually 700 mode... |
To follow up on what nx7500 said,
Quote:
|
All times are GMT -5. The time now is 11:45 PM. |