User privacy

Volker Wysk post at volker-wysk.de
Tue Feb 16 15:39:56 UTC 2021


Am Dienstag, den 16.02.2021, 15:32 +0000 schrieb Tony Arnold:
> Hi Volker,
> 
> On Tue, 2021-02-16 at 15:52 +0100, Volker Wysk wrote:
> > Hi
> > 
> > Am Dienstag, den 16.02.2021, 14:18 +0000 schrieb Ian Bruntlett:
> > > Hi,
> > > 
> > > I'm sorting out an existing Lubuntu 18.04 laptop for a mother and
> > > daughter. At the moment when I run umask I get the result "0002"
> > > which I
> > > believe means that different users can read each other's files in
> > > their
> > > $HOME directories. They want to stop each other from reading their
> > > files.
> > > 
> > > Now I have a rough idea on how to arrange this. I believe a
> > > different
> > > umask value has to be specified however I don't know:-
> > > * What value of umask to use
> > > * Where to set that value so that it is set as the default on
> > > bootup/login.
> > 
> > You don't need to touch the umask. Just delete the permissions for
> > "others"
> > on the home directories:
> > 
> > chmod o-rwx /home/HOMEDIR1
> > chmod o-rwx /home/HOMEDIR2
> 
> You will need to set the umask as well as the above to prevent newly
> created files being accessible by 'others'.

No, when the "others" don't have read und lookup rights, they can't see or
access what's in that directory. Even if the file inside the directory
itself does allow access. That I've written does not change any rights
recursively.

> umask should be set to 0007 or even 0077 to prevent group access,
> although I think Ubuntu puts users in different groups anyway.
> 
> I'd personally set umask in /etc/profile
> 
> Regards,
> Tony.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20210216/40c040a7/attachment.sig>


More information about the ubuntu-users mailing list