User privacy
Tony Arnold
tony.arnold at manchester.ac.uk
Tue Feb 16 15:32:25 UTC 2021
Hi Volker,
On Tue, 2021-02-16 at 15:52 +0100, Volker Wysk wrote:
> Hi
>
> Am Dienstag, den 16.02.2021, 14:18 +0000 schrieb Ian Bruntlett:
> > Hi,
> >
> > I'm sorting out an existing Lubuntu 18.04 laptop for a mother and
> > daughter. At the moment when I run umask I get the result "0002"
> > which I
> > believe means that different users can read each other's files in
> > their
> > $HOME directories. They want to stop each other from reading their
> > files.
> >
> > Now I have a rough idea on how to arrange this. I believe a
> > different
> > umask value has to be specified however I don't know:-
> > * What value of umask to use
> > * Where to set that value so that it is set as the default on
> > bootup/login.
>
> You don't need to touch the umask. Just delete the permissions for
> "others"
> on the home directories:
>
> chmod o-rwx /home/HOMEDIR1
> chmod o-rwx /home/HOMEDIR2
You will need to set the umask as well as the above to prevent newly
created files being accessible by 'others'.
umask should be set to 0007 or even 0077 to prevent group access,
although I think Ubuntu puts users in different groups anyway.
I'd personally set umask in /etc/profile
Regards,
Tony.
--
Tony Arnold MBCS, CITP | Senior IT Security Analyst | Directorate of IT Services | Office 1, Kilburn Building | The University of Manchester | Manchester M13 9PL | T: +44 161 275 6093 | M: +44 773 330 0039
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4054 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20210216/7c9b3e8d/attachment.bin>
More information about the ubuntu-users
mailing list