You are not logged in.
I just became aware recently that Arch does NOT use user private groups by default. I don't like knowing that my entire home directory is owned by the users group with default 755 permission. I've already did chmod go-rwx, but I still want UPG for paranoia's sake. I searched the wiki and googled, but found not one word on how to do this. Any ideas?
Last edited by darkfeline (2012-02-28 06:22:39)
Offline
I do not know how you are creating users on the system, but at least using useradd:
# useradd -m pepe
# ls -la /home/pepe
total 32
drwx------ 2 pepe pepe 4096 Feb 28 02:56 ./
drwxr-xr-x 16 root root 4096 Feb 28 02:56 ../
-rw-r--r-- 1 pepe pepe 21 Feb 2 2011 .bash_logout
-rw-r--r-- 1 pepe pepe 57 Feb 2 2011 .bash_profile
-rw-r--r-- 1 pepe pepe 141 Feb 2 2011 .bashrc
And this is enabled by default:
# grep USERGROUPS /etc/login.defs
USERGROUPS_ENAB yes
Offline
Thanks, I didn't know where the option was. USERGROUPS_ENAB was on for me too, and when I made a new user to check, everything worked correctly. But for some reason the first user I made didn't have its private group made.
Ah, I know what happened now. I followed the Beginner's Guide on the wiki without paying enough attention. Both methods suggested by the guide
# adduser
and
# useradd -m -g users -G audio,lp,optical,storage,video,games,power,scanner -s /bin/bash archie
default to users as primary group. Maybe that should be changed, in the interest of security?
Offline
Nice. You can add a note if you want
Offline