Comment posted How to configure Debian to create new added users through adduser to be secure by default / Limiting access to other user’s information by .
☩ Walking in Light with Christ – Faith, Computing, Diary
Free Software GNU Linux, FreeBSD, Unix, Windows, Mac OS – Hacks, Goodies, Tips and Tricks and the True Meaning of Life
-
Daily Bible quote
And shall not uncircumcision which is by nature, if it fulfil the
law, judge thee, who by the letter and circumcision dost transgress
the law?
-- Romans 2:27GET ARTICLE UPDATES
-
-
-
Useful blog? Help it:
-
More helpful Articles
- How to: Improve Adobe Flash Player Video speed on Debian / Ubuntu Linux
- Tracking graphically MySQL, Apache and Network performance in web with Munin on Debian Linux
- How to do Diff (compare files) over SSH between local and remote servers on Linux
- How to convert html pages to text in console / terminal on GNU / Linux and FreeBSD
- How nerd are you?
- The Dormition of Virgin Mary the Mother of the Lord Jesus Christ, the Eastern Orthodox Church view and few words on feast origin
- How to disable haproxy log for certain frontend / backend or stop haproxy logging completely
- Europe will be predominated by muslims 20 years from now / European Union might soon become Eurabia
- A Biography of one big Heart + His Holiness Patriarch Neophyte (Neofit) head of Bulgarian Orthodox Church
- My travel route from (Bulgaria) to Arnhem (The Netherlands)
- How to configure ProFTPD to chroot users to /home directory or any other selected directory
- Sick again – Hoping God to solve it all – and no desire to study
- Exaltation of the Holy Cross day in the Bulgarian Orthodox Church / Veneration of the Holy cross church feast
- How to build website sitemap (sitemap.xml) in Joomla
Links to Other Places
- My ShellScripts
- Pc Freak Solutions – Web hosting, Dedicated Servers Offshore, VPS hosting, Website Creation and SEO
- Cheap Remote System Administration
- Play Cool FreeBSD ASCII games
- Pc-Freak Security
- My Personal Twitter like Buddypress on Theology and Politics
- Българска Православна Библия
- Пророчествата на нашите Православни Светии
- Древни Църковно Славянски Книги
- Всичко за Всеки – Блог
- The Largest Holy Orthodox Christian Icons Collection on the Internet
- Pc-Freak Homepage
- Electronic Frontier Foundation – Defending your rights in the digital world
- gnu.org
- exploit-db.com
- Linux Weekly News
- Online Computer Museum
-
Recent Posts
- Enormous Scandal in the Bulgarian Orthodox Church continues as the Bulgarian Orthodox Church Holy Synod acts as Masonic Lodge not venerating the people’s choice about future Metropolitan of the Eparchy
- Improve haproxy logging with custom log-format for better readiability
- How to RIP audio CD and convert to MP3 format on Linux
- Dormition of Saint Methodius excerpt from the Biography letter on Saint Methodius from Saint Clement of Ohrid
- Second Sunday of Great Lent Saint Gregory Palamas – Hesychasm as a mean of Theosis (Union of of God and Man through Deification) and the Orthodox Christian Teaching of God’s Energies
- A Biography of one big Heart + His Holiness Patriarch Neophyte (Neofit) head of Bulgarian Orthodox Church
- DNS Monitoring: Check and Alert if DNS nameserver resolver of Linux machine is not properly resolving shell script. Monitor if /etc/resolv.conf DNS runs Okay
- How to count number of ESTABLISHED state TCP connections to a Windows server
Ads
Categories
- AIX (5)
- Anti-Malware Tools (3)
- Apache (1)
- Arcade Games (2)
- Backups (3)
- Bash Scripting (8)
- Bluetooth (5)
- Business Management (60)
- CentOS (8)
- Christianity (278)
- Cloud services (9)
- Clusters (2)
- Company onboarding basics (5)
- Computer Security (120)
- Conspiracy theories (11)
- Curious Facts (192)
- Cygwin (1)
- Debian (5)
- dhcpd (1)
- DNS (1)
- Docker (1)
- Economy (7)
- Educational (60)
- Email clients (3)
- Entertainment (166)
- Everyday Life (694)
- Exim (5)
- File Convert Tools (10)
- Firefox (7)
- Firewall (1)
- Flash Player (2)
- Free Software Graphical Environments (3)
- Free Software Social Networks (1)
- FreeBSD (123)
- Freedom Endangered (3)
- Games (2)
- Games Linux (38)
- Gnome (22)
- Hacks (11)
- Haproxy (12)
- Hardware (1)
- History (1)
- IBM AIX UNIX (3)
- IIS (6)
- Internet Explorer (2)
- IRC (1)
- Java (9)
- Joomla (25)
- Keepalived (1)
- LDAP (1)
- Linux (759)
- Linux and FreeBSD Desktop (358)
- Linux Audio & Video (88)
- Linux Backup tools (11)
- Linux on Laptops (11)
- Linux Package Management (9)
- Mac OS X (21)
- Marketing (1)
- Migration (3)
- Mobile Phone Apps & Games (39)
- Monitoring (35)
- Movie Reviews (55)
- MySQL (51)
- Networking (34)
- News (14)
- NFS (1)
- Nginx (9)
- OS Update (2)
- Outlook (5)
- Performance Tuning (13)
- PHP (8)
- Politics (2)
- PosgreSQL (2)
- Postfix (12)
- Postgresql (1)
- Programming (48)
- Psychology (9)
- Qmail (43)
- Rant (11)
- Remote System Administration (37)
- Samba (1)
- Security (7)
- Self Healing (6)
- Sendmail (4)
- SEO (32)
- Skype on Linux (16)
- Storage (3)
- SuSE Linux (3)
- System Administration (963)
- System Optimization (5)
- Tomcat (4)
- Trainings and Exams (2)
- Travel (1)
- Uncategorized (10)
- Various (775)
- Video Streaming (2)
- vim editor (2)
- Virtual Machines (30)
- VNC (1)
- Web and CMS (271)
- Weblogic (1)
- Windows (188)
- Wine – Windows Emulation (3)
- Wordpress (52)
- Zabbix (19)
About Myself
Recent Comments
- admin on Big Church Scandal in the Bulgarian Orthodox Church the developments on how the Church basic law Establishment document is illegally broken and hope and action for truth to be restored
- devs Env on How to install GNOME 2 desktop environment on Xubuntu / Substitute Xubuntu’s XFCE desktop manager with GNOME
- admin on A Biography of one big Heart + His Holiness Patriarch Neophyte (Neofit) head of Bulgarian Orthodox Church
- admin on A Biography of one big Heart + His Holiness Patriarch Neophyte (Neofit) head of Bulgarian Orthodox Church
- admin on Christ is Risen Eastern Orthodox Resurrection Paschal Greeting in Different Languages
Tags
Auto check com command configure Debian Desktop download Draft end file freebsd Gnome gnu linux host How to information Install Linux linux? make nbsp necessery number package password place quot reason root script servers software something system text time tool type Ubuntu use var Windows work wwwTop Post Views
- DOOM 1, DOOM 2, DOOM 3 game wad files for download / Playing Doom on Debian Linux via FreeDoom open source doom engine - 351,194 views
- IQ world rank by country and which are the smartest nations - 70,711 views
- Some of the most important Symbols for Orthodox Christians in The Eastern Orthodox Church – Symbols in the Eastern Orthodox Christian Faith (Eastern Orthodox Symbolism) and Christian Symbolism in the ... - 47,738 views
- Howto Remove (delist) your mail server IP from Hotmail, Live.com and MSN mail server blacklist - 44,231 views
- Resolving “nf_conntrack: table full, dropping packet.” flood message in dmesg Linux kernel log - 37,257 views
- How to change / reset lost or forgot TightVNC administrator password - 30,379 views
- How to connect to WiFi network using console or terminal on GNU / Linux - 24,115 views
- Installing the phpbb forum on Debian (Squeeze/Sid) Linux - 22,085 views
- Restoring sudden disappeared (deleted) Android Phone Contacts and Data on ZTE, Samsung, LG and Huawei mobile phones - 19,722 views
- How to download books from Books Google with Google Book Download stand alone program and Greasemonkey with Google Books Downloader script - 15,930 views
-
blogtopsites
☩ Walking in Light with Christ – Faith, Computing, Diary 2006-2020 Powered by:
Pc Freak Solutions and Comments (RSS).
Verbatim copying and distribution of this entire article is permitted in any medium, provided this notice is preserved.
Copyright (C) 2020 by Georgi Georgiev - Website Privacy Policy
Opera/9.80 (X11; Linux x86_64; U; en) Presto/2.6.30 Version/10.61
Should it not be chmod -R 750 /root, or chmod -R o-rx /root
View CommentView CommentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.472.14 Safari/534.3
Surely you mean the following:
debian:~# chmod -R 750 /root
View CommentView Commentdebian:~# for i in /home/*; do echo chmod -R 750 $i;
Mozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Safari/531.2+ Debian/squeeze/sid () Epiphany/2.29.92
yes in the hurry it seems I put a wrong number 🙂
View CommentView CommentOpera/9.80 (Windows NT 6.1; U; pl) Presto/2.6.30 Version/10.60
Your chmods shoul be 750 not 755, because it wouldn’t change anything 🙂
View CommentView CommentMozilla/5.0 (X11; U; Linux i686; es-ES; rv:1.9.1.10) Gecko/20100623 Iceweasel/3.5.10 (like Firefox/3.5.10)
‘I have no clear clue why the Debian development team has taken the decision to set such an insecure permissions by default,’
I do believe that’s a heritage thing from umask=0022 times.
I always change /etc/adduser.conf too (like you) AND umask settings.
In your example debian:~# chmod -R 755 /root I think that’s a typo, isn’t?
Maybe you mean debian:~# chmod -R 750 /root
Same thing to your second example (755 instead 750).
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Safari/531.2+ Debian/squeeze/sid () Epiphany/2.29.92
yes it’s a type thanks for noting it!
View CommentView CommentBest
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8
“for i in /home/*; do echo chmod -R 755 $i; done “
I guess it should be chmod -R 700 in the script.
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-GB; rv:1.9.2.7) Gecko/20100723 Fedora/3.6.7-1.fc13 Firefox/3.6.7
Old bug “/root is world readable”:
View CommentView Commenthttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=295858
Mozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Safari/531.2+ Debian/squeeze/sid () Epiphany/2.29.92
Yes you’re right
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-GB; rv:1.9.2.7) Gecko/20100723 Fedora/3.6.7-1.fc13 Firefox/3.6.7
I think it’s wrong to recursively change the ownerships on people’s files. You should only change the permissions on their home directory.
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Safari/531.2+ Debian/squeeze/sid () Epiphany/2.29.92
Guess you’re right but yet, if only the users directory permissions are changed somebody could try to guess the user files and he will be able to read them if he is lucky. Thus it might be better that way sometimes.
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-GB; rv:1.9.2.7) Gecko/20100723 Fedora/3.6.7-1.fc13 Firefox/3.6.7
No it doesn’t work like that – try it.
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Safari/531.2+ Debian/squeeze/sid () Epiphany/2.29.92
Yep I just gave it a try, You’re right. the “-R” option is not necessary in the for loop. I’ve fixed that in the article.
Thanks for noting it!
Will be seeing you around,
Wish you best!
Georgi
View CommentView CommentMozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0; .NET CLR 1.0.2914)
hey orada gday þekilde ailesine vereceðiz site . Seçilmisl?r? fark I anybody hansi site haqqinda bir . !
View CommentView CommentMozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.9.1.3) Gecko/20090824 Firefox/3.5.3 (.NET CLR 3.5.30729)
If some one needs to be updated with newest technologies after that he must be go to see this site and be up to date every day.
View CommentView Comment