LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page [SOLVED] securing my account
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-15-2010, 12:42 PM   #1
tavva divya
LQ Newbie
 
Registered: Nov 2009
Posts: 24

Rep: Reputation: 15
securing my account

I had 2 accounts on a single system. Other users are able to see my data. how to stop other users to access my personal data.
 
Click here to see the post LQ members have rated as the most helpful post in this thread.
Old 03-15-2010, 12:44 PM   #2
raju.mopidevi
Senior Member
 
Registered: Jan 2009
Location: vijayawada, India
Distribution: openSUSE 11.2, Ubuntu 9.0.4
Posts: 1,155
Blog Entries: 12

Rep: Reputation: 92
may be your umask is set as 022. This allows you read ,execute access to all groups, all users.
 
0 members found this post helpful.
Old 03-15-2010, 12:46 PM   #3
raju.mopidevi
Senior Member
 
Registered: Jan 2009
Location: vijayawada, India
Distribution: openSUSE 11.2, Ubuntu 9.0.4
Posts: 1,155
Blog Entries: 12

Rep: Reputation: 92
try this
chmod 700 /home/<your account>
This restricts others to read or execute your a/c.
 
3 members found this post helpful.
Old 03-15-2010, 01:03 PM   #4
raju.mopidevi
Senior Member
 
Registered: Jan 2009
Location: vijayawada, India
Distribution: openSUSE 11.2, Ubuntu 9.0.4
Posts: 1,155
Blog Entries: 12

Rep: Reputation: 92
If you give security by umask value, you are also restricted to see other accounts.
But using above command only your home folder will be restricted for other users. you can see others accounts.
 
0 members found this post helpful.
Old 03-15-2010, 01:04 PM   #5
tavva divya
LQ Newbie
 
Registered: Nov 2009
Posts: 24

Original Poster
Rep: Reputation: 15
thank you
 
Old 03-15-2010, 02:15 PM   #6
catkin
LQ 5k Club
 
Registered: Dec 2008
Location: Tamil Nadu, India
Distribution: Debian
Posts: 8,578
Blog Entries: 31

Rep: Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208Reputation: 1208
Quote:
Originally Posted by raju.mopidevi View Post
If you give security by umask value, you are also restricted to see other accounts.
umask is only effective when creating files; it does not affect what you are able to read/write/execute/list. From the umask man page:
Code:
DESCRIPTION
       umask()  sets  the  calling process's file mode creation mask (umask) to mask & 0777 (i.e., only the file permission bits of mask are
       used), and returns the previous value of the mask.

       The umask is used by open(2), mkdir(2), and other system calls that create files to modify the permissions placed  on  newly  created
       files or directories.
 
1 members found this post helpful.
Old 03-15-2010, 02:34 PM   #7
raju.mopidevi
Senior Member
 
Registered: Jan 2009
Location: vijayawada, India
Distribution: openSUSE 11.2, Ubuntu 9.0.4
Posts: 1,155
Blog Entries: 12

Rep: Reputation: 92
Hi catkin, I am talking about accessing files, if I change umask in such a way that only that particular user can access. then we can't access other user files.
 
0 members found this post helpful.
Old 03-15-2010, 04:41 PM   #8
slimm609
Member
 
Registered: May 2007
Location: Chas, SC
Distribution: slackware, gentoo, fedora, LFS, sidewinder G2, solaris, FreeBSD, RHEL, SUSE, Backtrack
Posts: 430

Rep: Reputation: 67
Quote:
Originally Posted by raju.mopidevi View Post
Hi catkin, I am talking about accessing files, if I change umask in such a way that only that particular user can access. then we can't access other user files.
Changing the umask to anything will only affect NEWLY created files. So that would help for the files that he creates in the future but not for the directory or files that are already there.
 
1 members found this post helpful.
Old 03-15-2010, 04:53 PM   #9
raju.mopidevi
Senior Member
 
Registered: Jan 2009
Location: vijayawada, India
Distribution: openSUSE 11.2, Ubuntu 9.0.4
Posts: 1,155
Blog Entries: 12

Rep: Reputation: 92
I also talking about the yet to be created files only.

Clearly what i want to say is .....
The present umask value allows to read, execute the files.
if you change the umask value that effects to access this user. without effecting other user's permissions and changing our own home directory permissions is a way to secure our account
Last edited by raju.mopidevi; 03-15-2010 at 05:02 PM.
 
0 members found this post helpful.
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
hardening \ securing \ auditing a linux server account Networking Linux - Security 15 09-22-2009 07:00 PM
hardening \ securing \ auditing a linux server account Networking Linux - Security 4 08-06-2009 01:20 PM
securing guest account mattydee Slackware 11 02-04-2008 10:36 AM
is it legitimate and allowed and can be done to make another user account set uid and gid to null 0 to make another root account with different name and possibly not damage the debian system creating and using that new account BenJoBoy Linux - Newbie 12 01-29-2006 10:02 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:29 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration