[Bug 48734] Re: Home permissions too open

Mon Jan 18 16:37:10 UTC 2021

--- Avoiding the caveat of "this does not work"? ---

You may just not have thought yet of this solution that can be
implemented with little adjustment:

( Privacy by default? YES, even with improved usability! )

Here is a trial script:
https://salsa.debian.org/freedombox-team/freedombox/-/snippets/518

The privacy by default solution goes along these lines:

* Simply let $HOME point to /home/<user/private

While having usable sharing dirs like this:

* /home/<user>/public_html
* /home/<user>/incoming

* /home/group/users/

* /home/group/admin/private
* /home/group/admin/incoming

These kind of different problems just need to be seen and solved together.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to shadow in Ubuntu.
https://bugs.launchpad.net/bugs/48734

Title:
  Home permissions too open

Status in adduser package in Ubuntu:
  Fix Released
Status in shadow package in Ubuntu:
  Fix Released
Status in adduser source package in Hirsute:
  Fix Released
Status in shadow source package in Hirsute:
  Fix Released
Status in Ubuntu RTM:
  Opinion

Bug description:
  Binary package hint: debian-installer

  On a fresh dapper install i noticed that the file permissons for the
  home directory for the user created by the installer is set to 755,
  giving read access to everyone on the system.

  Surely this is a bad idea? If your set on the idea can we atleast have
  a option during the boot proccess?

  Also new files that are created via the console ('touch' etc.) are
  done so with '644' permissons, is there anything that can be done
  here? nautlius seems to create files at '600', which is a better
  setting.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/adduser/+bug/48734/+subscriptions