2008-03-21 10:43:16 |
ubuntu_demon |
bug |
|
|
added bug |
2008-03-21 10:44:29 |
ubuntu_demon |
description |
Your homedir should be private but there should be a special "public" readable folder where you can put files you want to share with other users of the same machine.
RATIONALE :
* the files in your home dir should not be read by others unless you give others permission to do so (privacy and security issue)
* with this solution people have an easy way of giving others permission to read their files
IMPLEMENTATION DETAILS :
The default umask should be set to 077 (in /etc/profile)
The default umask for XDG_PUBLICSHARE_DIR should be set to 022
XDG_PUBLICSHARE_DIR should be chmodded to 755 to ensure everybody can read the contents of this folder.
XDG_PUBLICSHARE_DIR is defined in ~/.config/user-dirs.dirs and is set to $HOME/Public by default. |
Your homedir should be private but there should be a special "public" readable folder where you can put files you want to share with other users of the same machine.
RATIONALE :
* the files in your home dir should not be read by others unless you give others permission to do so (privacy and security issue)
* with this solution people have an easy way of giving others permission to read their files
IMPLEMENTATION DETAILS :
The default umask should be set to 077 (in /etc/profile)
The default umask for XDG_PUBLICSHARE_DIR should be set to 022
XDG_PUBLICSHARE_DIR should be chmodded to 755 to ensure everybody can read the contents of this folder.
XDG_PUBLICSHARE_DIR is defined in ~/.config/user-dirs.dirs and is set to $HOME/Public by default.
brainstorm link : http://brainstorm.ubuntu.com/idea/5287/ |
|
2008-03-21 10:45:11 |
ubuntu_demon |
description |
Your homedir should be private but there should be a special "public" readable folder where you can put files you want to share with other users of the same machine.
RATIONALE :
* the files in your home dir should not be read by others unless you give others permission to do so (privacy and security issue)
* with this solution people have an easy way of giving others permission to read their files
IMPLEMENTATION DETAILS :
The default umask should be set to 077 (in /etc/profile)
The default umask for XDG_PUBLICSHARE_DIR should be set to 022
XDG_PUBLICSHARE_DIR should be chmodded to 755 to ensure everybody can read the contents of this folder.
XDG_PUBLICSHARE_DIR is defined in ~/.config/user-dirs.dirs and is set to $HOME/Public by default.
brainstorm link : http://brainstorm.ubuntu.com/idea/5287/ |
Your homedir should be private but there should be a special "public" readable folder where you can put files you want to share with other users of the same machine.
In other words :
The default umask should be set to 077. XDG_PUBLICSHARE_DIR should have umask 022
RATIONALE :
* the files in your home dir should not be read by others unless you give others permission to do so (privacy and security issue)
* with this solution people have an easy way of giving others permission to read their files
IMPLEMENTATION DETAILS :
The default umask should be set to 077 (in /etc/profile)
The default umask for XDG_PUBLICSHARE_DIR should be set to 022
XDG_PUBLICSHARE_DIR should be chmodded to 755 to ensure everybody can read the contents of this folder.
XDG_PUBLICSHARE_DIR is defined in ~/.config/user-dirs.dirs and is set to $HOME/Public by default.
brainstorm link : http://brainstorm.ubuntu.com/idea/5287/ |
|
2008-04-03 04:09:02 |
Greg Grossmeier |
None: importance |
Undecided |
Wishlist |
|
2008-04-03 04:09:02 |
Greg Grossmeier |
None: status |
New |
Confirmed |
|
2008-04-09 20:30:22 |
Kees Cook |
bug |
|
|
added subscriber Ubuntu Security Team |
2009-11-25 19:25:10 |
ceg |
summary |
The default umask should be set to 077. XDG_PUBLICSHARE_DIR should have umask 022 |
private homedirs and separate XDG_PUBLICSHARE_DIR (/home/share/<username>) |
|
2009-11-25 19:25:10 |
ceg |
description |
Your homedir should be private but there should be a special "public" readable folder where you can put files you want to share with other users of the same machine.
In other words :
The default umask should be set to 077. XDG_PUBLICSHARE_DIR should have umask 022
RATIONALE :
* the files in your home dir should not be read by others unless you give others permission to do so (privacy and security issue)
* with this solution people have an easy way of giving others permission to read their files
IMPLEMENTATION DETAILS :
The default umask should be set to 077 (in /etc/profile)
The default umask for XDG_PUBLICSHARE_DIR should be set to 022
XDG_PUBLICSHARE_DIR should be chmodded to 755 to ensure everybody can read the contents of this folder.
XDG_PUBLICSHARE_DIR is defined in ~/.config/user-dirs.dirs and is set to $HOME/Public by default.
brainstorm link : http://brainstorm.ubuntu.com/idea/5287/ |
Your homedir should be private but there should be a special "public" readable folder where you can put files you want to share with other users of the same machine. (for example /home/share/<username>)
RATIONALE :
* the files in your home dir should not be read by others unless you give others permission to do so (privacy and security issue)
* with this solution people have an easy way of giving others permission to read their files
IMPLEMENTATION DETAILS :
XDG_PUBLICSHARE_DIR is defined in ~/.config/user-dirs.dirs and is set to $HOME/Public by default.
https://wiki.ubuntu.com/MultiUserManagement
(Originaly this Bug talked about setting specific umasks for directories (not supported with standard linux) and did not consider user private groups allowing a default umask of 002 and sgid group directories.)
original brainstorm link : http://brainstorm.ubuntu.com/idea/5287/ |
|
2010-10-18 14:05:28 |
Mihai Capotă |
bug |
|
|
added subscriber Mihai Capotă |
2011-10-19 16:35:11 |
Jamie Strandboge |
removed subscriber Ubuntu Security Team |
|
|
|