[Bug 48734] Re: Home permissions too open
Søren
48734 at bugs.launchpad.net
Mon Dec 12 00:11:34 UTC 2011
I was horrified to find my home dir open, and Googled this post.
I simply can't believe the rationale - okay, we are geeks using Linux
wearing tinfoil hats but please: you are going to sacrifice security for
the sake of ... I don't exactly know how to put it... a badly
implemented sharing feature, perhaps?
Running a webserver, I found out that if someone somehow manages to get shell access with the very limited webserver user, which runs silly rbash (restricted bash), they will have access to ALL users home dirs - also administrators.
But of course, then they will be pleased to see, how easy filesharing is on Ubuntu.
There must be a more intelligent solution to this security issue.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to adduser in Ubuntu.
https://bugs.launchpad.net/bugs/48734
Title:
Home permissions too open
Status in “adduser” package in Ubuntu:
Opinion
Bug description:
Binary package hint: debian-installer
On a fresh dapper install i noticed that the file permissons for the
home directory for the user created by the installer is set to 755,
giving read access to everyone on the system.
Surely this is a bad idea? If your set on the idea can we atleast have
a option during the boot proccess?
Also new files that are created via the console ('touch' etc.) are
done so with '644' permissons, is there anything that can be done
here? nautlius seems to create files at '600', which is a better
setting.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/adduser/+bug/48734/+subscriptions
More information about the foundations-bugs
mailing list