Fedora Security :: Default File Permissions In /boot?
May 14, 2010
Does anyone know why files in /boot are world-readable (particularly the initial ram disk)? I'm not an expert, but I would not expect anyone except root or a sudoer to have the ability to read these files.
View 5 Replies
ADVERTISEMENT
Feb 5, 2010
What do the default file permissions in ubuntu 9.10 protect/deny access to?
View 9 Replies
View Related
Jun 26, 2011
I have a file server running a cronjob to reset file permissions on a regular basis. I was thinking, I wonder if there is a way to do the chmod and chown command in a single command, as I always have to do both on the same folder, the way that you can do "chown root:users Uploads" instead of having to do two separate commands for chown and chgrp.
Then I got to thinking, are these commands even necessary? Every file copied or moved into these folders by any user needs to be something like "chmod 750" and "chgrp root:users", so rather than running a cronjob to do these modifications at regular intervals, there ought to be a way to set the folder permissions so that any files contained within will have these permissions.
The problem arises because users create documents, then a supervisor with elevated privileges can move those documents into a shared folder, however the permissions are wrong, they are user1:user1 for the owner and group and the other users can't read the file until a cronjob changes the group to be users. This has actually been acceptable, but certainly there is a better way to do this.
View 7 Replies
View Related
Jul 3, 2011
my dad has been using Ubuntu for a few weeks now and likes it, however he's having some issues regarding read-only files. He's a doctor and frequently has to download word files to edit, however they always download as a read-only file. While this isn't particularly difficult to do, he finds doing it tiresome and because he isn't the most proficient PC user, may have difficulty with it when I return to school after the summer. I was hoping that there's some way to change the default settings so that all files downloaded are writeable.
Additionally, he has a number CD-RWs which he both retrieves files from and stores them to, however when trying to access these CDs he is told that they are read-only. Right clicking on the CD and trying to change the access permissions doesn't work (says that permissions can't be changed because the disc is read-only).
View 7 Replies
View Related
Jan 14, 2010
This is probably a pretty basic question seeing as I'm pretty new to Ubuntu Server. I'm running a simple website from my Ubuntu Server machine with The files are all stored in /var/www/ and then subdirectories. The problem is that when I add files through FTP I need to go and change all of the file permissions since by default they do not have read access so can't be accessed through a web browser on another machine.How can I make the default permissions readable for the directory and all new files that will be moved in it
View 5 Replies
View Related
Mar 28, 2011
Files saved on our ubuntu server via samba server are all being created/saved as read only (-rwxr--r--). The users are MAC Users who are connecting via finder.I have taken 2 steps:First I added the lines "umask 0000" to the .bashrc files in the users' home directories.Second, I have modified the /etc/samba/smb.conf file such that I set "create mask = 0000" and also "directory mask = 0000" but the files are still being created as "-rwxr--r--".
View 1 Replies
View Related
Jul 7, 2009
i am trying to set the file permissions for the log files "/var/log/Xorg.0.log" and "/var/log/gdm/:0.log". These files seem to be created when a user logs into a whokstation (my guess so far). I am trying to comply with a security mandate that all log files in the directory /var/log are set to 0640. The two mentioned files always seem to have the permissions 0644, does anyone know where and when these filea are created and how I might set the permissions when the files are created
View 1 Replies
View Related
Jun 28, 2011
When I create a new file/folder in a ext4 data partition, it has permissions:
owner: rwx
group: r
other: r
I would like to change this default to:
owner: rwx
group: rw
other: -
I tried changing fstab, but umask and guid are not supported mount options for ext4. What can I do?
Note: I know I can do a chmod, but I don't want to do this again and again for every new file I create.
View 9 Replies
View Related
May 5, 2010
I had a major raid event recently which caused my Ubuntu 9.04 server to recover part of its file journal on the system partition. This caused some of the file permissions to go all funny and I now need to change them manually.
What the file permissions should for the following folders:
/etc/
/home/
/lost+found/
/mnt/
/root/
/sbin/
/srv/
/tmp/
The server is running and I fixed the some of the ownership issues already. I use a basic LAMP setup with samba, and proftp.
View 2 Replies
View Related
Nov 18, 2010
I'm just wondering: I know that umask sets the default file permissions for files, however I want to know if there is anyway to set default file permissions for newly created directories.
For example, I want my user to create new directories that anyone can access and modify (777) but I want the new files the user creates to be 755 (read by everyone, written only by user).
Is this possible?
View 1 Replies
View Related
Apr 14, 2010
I am using Red Hat Linux 4 .There are some few questions in my mind related to umask. I want to know that is the default file and directory permissions ?
- When we use umask (022) command in terminal. and create a new file then the permissions applied for new file is for that session and when the system will reboot linux will take automatically its default permission from etc/bashrc or /etc/profile ?
- Can we make our own umask or the professional way is to follow 022 only ?
- What is the benefit of umask in Linux?
View 2 Replies
View Related
Dec 4, 2009
I was working on a shell script to change the permissions of large directories and subdirectories because of an exploit discovered in the programs that run in those said directories that allow a client to upload and download files to the server. Loan behold I accidentally added a space and had something along the lines of "chmod -R 770 ." run on / logged in as root.
Yes, it was an incredibly noob move on my part, but nothing ventured nothing gained. I am surprisingly calm about this. I tried sliding in my CentOS installation disk and "Upgrading" CentOS but that only made it worse, beforehand I made everything owned by root so I could at least log into GNOME. This does not work for obvious reasons, namely having to change the permissions back for every user and every group, which far beyond a possibility.
View 7 Replies
View Related
Sep 12, 2009
Is there a way to specify append only permissions for a file?
View 2 Replies
View Related
Mar 3, 2010
I am setting up a new ubuntu server, and I am quite new to linux. This server will be used as code repository for a project I am going to be working on. I plan to setup 3 groups for users: dev, test, doc
- for various developers, testers and documentation users.
I would like to setup the following permissions on the main code repository directory:
dev - write permission
test - execute permission
doc - read permission
public (anyone outside these groups) - deny all access
I am unsure what chmod setting to use, or if this is even possible in ubuntu.
View 2 Replies
View Related
Mar 24, 2011
How is possible, that vim can write to file and changes his ownerchip ?
View 4 Replies
View Related
Jul 6, 2011
I know how to assign file permissions and other tasks like user to group, but I'm stuck with a situation in how I should set up my system.So I have a LAMP server set up. I'm not the only developer so I created a group called "developers" for my other users "Mike," "Alex," and "Cindy," which are developers (I'm Mike by the way). I know that "www-data" is the user and group Apache uses.This is good because only I have permission to update the production site, but for the dev site, it's a different story.
View 3 Replies
View Related
Aug 17, 2010
After a kernel update, the system always updates the GRUB menu, and the newer kernel is the default boot option.However, after an update on my F13 X64 system, the GRUB menu was updated, the config file still sets the default to "1" but if i left the automatic boot it will boot the previous kernel... am I crazy or missing something here?Here is my /boot/grub/grub.conf file:
Code:
#boot=/dev/sda
default=1
[code].....
View 4 Replies
View Related
Jan 28, 2010
I was curious if anyone has addressed this issue before. I have set the permissions to /var/log/Xorg.0.log as follows:
Code:
-rw-r----- 1 root root 00000 Jan 00 00:00 /var/log/Xorg.0.log
I have done a lsof and the file is being opened by root. I have set Roots umask to 0077, yet after a reboot
[code]....
View 1 Replies
View Related
May 9, 2010
I have broken my MBR and can now only enter 9.10 with the ubuntu start up cd.when i boot through he ubuntu live cd.I can see my mounted drive with all my files however i do not have the permissions to open or copy some of my files( music, films, pics) . id like to do this so i can transfer all my files to an external HDD and reformat start all over again.error when trying to open files.You do not have the permissions necessary to view the contents of.
View 1 Replies
View Related
Jul 23, 2009
Picture the following:On computer A, local user John (and John alone) has rwx access to file1.txtComputer B also has a local user account named John. If file1.txt was to be copied from computer A to computer B, would the user account John on computer B be able to access it?I guess this wouldn't work using two windows computers due to the User name / GUID relationship. Maybe linux has something similar?
View 4 Replies
View Related
Oct 3, 2010
In Nautilus I select a directory on local NTFS volume. I'm logged in as root, right-click > Properties > Permissions and I set "Others" to "none". But it doesn't work. I want my friends & visitors to use and enjoy Ubuntu but without access to my NTFS volumes.
View 9 Replies
View Related
Jan 25, 2011
Is anyone aware of a detailed "flow chart" -- arrows and decision diamonds, etc -- that describes the file access and permissions processing? I would love to see that diagram. Years ago on a platform far away (Digitial VAX/VMS) their manuals had such a flow chart that covered not only the user-group-owner and read-write-execute permissions decision making but also include "access control list" processing at a superficial level. If someone has access to the VAX/VMS flow chart, that might be a start toward sorting what linux does.
View 4 Replies
View Related
Feb 24, 2011
However, configured a website on a dedicated server using WHM/cPanel. The site was uploaded using the master account for the website.
The security issue is public users are able to upload files on to my server via the website. They could even access the root and execute whatever they want on the server.
I have consulted with 2-3 Linux experts. According to them, the PHP user has rights to execute anything on the server or upload & store files in whichever folder they want.
Can I protect my folders to avoid file uploads via the website. The application has security vulnerabilites. However, I want to prevent hackers to enter my site until the vulnerabilities are fixed.
View 2 Replies
View Related
Nov 2, 2010
I have a remote directory shared over NFS called tech with perms set as 0750 and owner set to root:tech. I have 2 groups: tech, and techAdmin. tech can read and execute within tech/. techAdmin can read, write, execute. I have 4 users: user1, user2, user3, user4. user1 and user2 is a member of techAdmin, user3 and user4 are members of tech. simple so far...but wait here's the problem. If user1 creates a file inside tech, user2 cant read or modify it because user1 owns it. Here's a few sites that reference this problem:
[code]....
View 4 Replies
View Related
Mar 16, 2010
Is it possible to reset apache 2 permissions to default permissions I'm using Ubuntu 9.10 command line server, would webmin give me this access ?
View 1 Replies
View Related
Dec 10, 2010
Some time back using this computer a SucKit rootkit was found. Having dd urandomed the drive, flattened CMOS battery, flashed BIOS, run Knoppix live CD 6.1,using no flat pack battery (laptop), and memtested the RAM, I am still having problems with what I suspect is a javascript file that tries to reload the rootkit from? firmware. I suspect the firmware as everything else should have eradicated it??
Also it or a hacker via a backdoor then corrupts the drivers so devices malfunction. Windows security programs and rootkit detectors don't seem to pick it up. Fresh install of Windows or linux after the above still show this problem, though internet not used. The person who admitted rootkitting this machine is capable of writing java programs or using javascripts to do all this.
When viewed using Ubuntu 8.4 files and dates on a Windows partition appear normal both in file manager and terminal. However booting using Knoppix CD these files are all green, and I cannot change their permissions, even as root. ie: everything is green including text files etc. If I copy them to a linux partition, I can change their permissions and make them nonexecutable and nonwritable. Also on the Windows FAT32 partition the . directory has the date 1 Jan 1970.
If I disable any green files, I can shutdown and reboot cleanly. If I don't I start having problems shutting down [/usr/sbin/init ?] And always these follow a pattern:
Can't remember details as I have now corralled the beast but error messages relating to:
nfs-server
inet.d/statd
are the start of these.
View 3 Replies
View Related
Aug 12, 2010
I wrote a C++ program that uses serial port in fedora. Since normal user has no permission to read/write to /dev/ttySx, the program doesn't work. if I changed the permissions using chmod in su, it will works for that session. When restarts the permission changed to default again. So what to do a normal user program to access /dev/ttyS0?
View 3 Replies
View Related
Jun 23, 2011
I know - who uses parallel ports any more? People like me with an excellent, but old, HP OfficeJetPro 1150C. This is an old problem marked [SOLVED] in the following link to nowhere:
[URL]
I'm at Fedora 13 - 2.6.34.8-68.fc13.i686.PAE
Problem
1. /dev/parport0 is not found by sane unless you reset permissions after each boot
2. hplip udev rules only seem to support usb devices.
3. there are no/dev/parport[0-9] rules in udev/rules.d anymore
4. Did I read something about these ports being handled by HAL ACLs? If so, how do you do it?
default:
ls -laF /dev/parport0
crw-rw---- 1 root lp 99, 0 Jun 23 07:48 /dev/parport0
must do at each boot: sudo chmod 666 /dev/parport0
View 4 Replies
View Related
Jun 22, 2009
i try to copy file music .oog .wav from Music folder to /usr/share/sounds/freedesktop/stereo but i can't and in folder /stereo i can't manage rename ,cut ,move to trash for all file .ogg when i right click at file to look Properties > at permissions i saw owner : root can not change these permissions
that 's i not understand about owner . and how i can change these permissions ?
View 7 Replies
View Related
Oct 16, 2010
Finally I managed to install my printer/scanner drivers.The last thing I need to do is to add the following two lines to 40-libsane.rules (which is a read only file):# Brother scanners ATTRS{idVendor}=="04f9", ENV{libsane_matched}="yes".How can I change permissions for this file or add these lines without changing permissions?
View 2 Replies
View Related