Private home directories for hirsute onwards

Dimitri John Ledkov dimitri.ledkov at
Thu Nov 26 17:09:36 UTC 2020

On Thu, Nov 26, 2020 at 2:31 AM Alex Murray <alex.murray at> wrote:
> setfacl -m u:libvirt-qemu:rx $HOME

Similar to above for qemu are there similar setfacl commands, would
something similar be also needed for:
- sshd user to access ~/.ssh/authorized_keys , or nothing needed there?
- in GNOME making ~/Public public?
- giving access to ~/public_html for the www-data user?

If yes, then what are the commands?

I like this approach of selective and explicit setfacl commands to
grant ACLs on per-usecase basis. This is inline with modern ways of
managing permissions.



More information about the Ubuntu-devel-discuss mailing list