[ubuntu-in] How to create a new user in Ubuntu, with restricted permissions

KBS Ramachandra ram at meritsystems.com
Wed Nov 9 06:57:35 UTC 2011 

Ram,

Umask determines the permissions with which files and folders are 
created when users create them. With the default umask of 022, group 
members and others will have read access to files and folders created. 
In case of folders, there will also be the execute permission (means 
folder browse)

When you set a umask of higher restriction, the default permissions of 
files and folders created are more restrictive.

However, a user may change the permissions on the files / folders she 
creates so that others have access to it.

Regards,
Ramachandra


On 11/09/2011 12:09 PM, Ramnarayan.K wrote:
>
>
> On Tue, Nov 8, 2011 at 8:52 PM, Onkar Shinde <onkarshinde at gmail.com 
> <mailto:onkarshinde at gmail.com>> wrote:
>
>     Perhaps you are approaching the problem in wrong way. If the only
>     thing you want to achieve is restrict the new user from accessing
>     other users' home directories then you should check the umask. I
>     believe the default is 0022 which allows other users to read files and
>     list contents of directories.
>
>
> Seems you have got us on the right track
>
>
>     You can either change the default umask in /etc/profile or with the
>     appropriate mount options of the partition where /home is present (if
>     on separate partition). The sensible default in your case will be 0077
>     (or a bit less restrictive 0066).
>
>
> so i have see the file /etc/profile
>
> the last line is umask 0022
>
> but is this for any user or all users - am supposing that /etc/foo 
> will be coming to all users
>
> so if i change it what exactly happens ??
>
> @ Ramachandra - saw the chroot thingy am not sure that it would work - 
> seems a bit complicated to implement
>
> thanks
> ram
> _________________________________________________________
> Amazing Indians: Transforming lives in the hills 
> <http://www.timesnow.tv/Amazing-Indians-Transforming-lives-in-the-hills/videoshow/4383022.cms> 
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-in/attachments/20111109/7d3cf4c2/attachment.html>

More information about the ubuntu-in mailing list