User privacy
Tony Arnold
tony.arnold at manchester.ac.uk
Tue Feb 16 16:29:55 UTC 2021
On Tue, 2021-02-16 at 16:39 +0100, Volker Wysk wrote:
> Am Dienstag, den 16.02.2021, 15:32 +0000 schrieb Tony Arnold:
> > Hi Volker,
> > On Tue, 2021-02-16 at 15:52 +0100, Volker Wysk wrote:
> > > Hi
> > > Am Dienstag, den 16.02.2021, 14:18 +0000 schrieb Ian Bruntlett:
> > > > Hi,
> > > > I'm sorting out an existing Lubuntu 18.04 laptop for a mother
> > > > anddaughter. At the moment when I run umask I get the result
> > > > "0002"which Ibelieve means that different users can read each
> > > > other's files intheir$HOME directories. They want to stop each
> > > > other from reading theirfiles.
> > > > Now I have a rough idea on how to arrange this. I believe
> > > > adifferentumask value has to be specified however I don't
> > > > know:-* What value of umask to use* Where to set that value so
> > > > that it is set as the default onbootup/login.
> > >
> > > You don't need to touch the umask. Just delete the permissions
> > > for"others"on the home directories:
> > > chmod o-rwx /home/HOMEDIR1chmod o-rwx /home/HOMEDIR2
> >
> > You will need to set the umask as well as the above to prevent
> > newlycreated files being accessible by 'others'.
>
> No, when the "others" don't have read und lookup rights, they can't
> see oraccess what's in that directory. Even if the file inside the
> directoryitself does allow access. That I've written does not change
> any rightsrecursively.
I'd forgotten that. What about files created in /tmp though? I think
there is an argument for setting umask.
Regards,
Tony.
--
Tony Arnold MBCS, CITP | Senior IT Security Analyst | Directorate of IT Services | Office 1, Kilburn Building | The University of Manchester | Manchester M13 9PL | T: +44 161 275 6093 | M: +44 773 330 0039
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20210216/ca446101/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4054 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20210216/ca446101/attachment.bin>
More information about the ubuntu-users
mailing list