user permissions - noob question

wimbo · Posted: Thu Nov 10, 2005 1:42 pm Post subject: user permissions - noob question

hello,

i have three users on my computer (wimbo, thijs and seb) now i want that nobody can access some one elses directory in /home. so i changed permissions to this

nielchiano · Veteran Joined: 11 Nov 2003 Posts: 1287 Location: 50N 3E

you probabely need to remove the games from the users group, and add yourself.
I'm not a guru, but I don't think you can add groups to groups...

for the home dirs: setting permissions to 700 (that is rwx------) will allow the owner (=the user) all access, and deny everyone else.

sundialsvc4 · Guru Joined: 10 Nov 2005 Posts: 436

The way you've set up things now, every user belongs to the "users" group and any member of that group can read and search (but not create files in) those directories. The files probably carry similar permissions. And, that's not good, because users are creating files that (thanks to their common group-membership) all of them can read.

A better approach is to create a separate group for each user, and each user belongs only to "his" group. That is to say, user george belongs to group george, and no one else belongs to that group.

If you want "shareable things," say among all-users or selected subsets of users, Access Control Lists (ACLs) provide very flexible controls.

wimbo · Posted: Fri Nov 11, 2005 11:02 am Post subject:

i see. but i didn't really set that up. it kind of happened while installing gentoo. ill' try to change it

thx,

wimbo

pjp · Administrator Joined: 16 Apr 2002 Posts: 20588

Moved from Installing Gentoo
_________________
Quis separabit? Quo animo?