<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnerability Development: Re: ssh quirks...

Re: ssh quirks...

From: LaMont Jones <lamont_at_SECURITY.HP.COM>
Date: Mon, 27 Dec 1999 15:24:18 -0700

> This is standard unix behaviour. if a user's home directory path isn't
> readable by that user, they can't access it. typically the /home dir should
> be world readable as should the / dir. home directories can be any
> permissions a user wants and should be owned by the user themselves.

Minor nit:
Read access (to a directory) is needed to list it. Execute access is
needed to access things in it. You can log in with a home directory
that is mode 100, but you won't be able to get anything out of ls...

If, for whatever insane reason, you don't want your users knowing anyone
else's home directory, you can remove world read perms from /etc/passwd,
and make /home mode 511. Not that anyone would recommend that...

lamont
Received on Dec 27 1999

This message: [ Message body ]
Next message: Warner Losh: "Re: BSD chfn bug"
Previous message: Ralph the Wonder Llama: "Re: ssh quirks..."
In reply to: Ryan Permeh: "Re: ssh quirks..."
Next in thread: Kev: "Re: ssh quirks..."
Reply: Kev: "Re: ssh quirks..."

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos