Ubuntu :: Change Umask On Per User / Group Basis?
Mar 25, 2011
I've decided to move this question into a new thread since i haven't received an answer for 3 days. This question was originaly posted here: [URL]... I've already searched in google, however i wasn't able to find an answer that solves my problem... How can i change the umask on a per user basis so that each user can have its own umask to fit his needs? For example: I have four accounts on my system ex.
admin1 : admin,
admin2 : admin,
manager : stuff,
user : user,
-So now I want everything from the admin group to be by default set to 002 (so that every user that is in the admins group can have a full share (-rwx rwx r--) of everything that is created by the admins).
-Then the similar to the above managers shoud have 022 umask.
-And each of the regular users should have 002 or 022 or 077 it is up to the users choice.
I hope that i have provided enough info thorough the example.
View 4 Replies
ADVERTISEMENT
Mar 30, 2010
is it considered standard practice to change the user password on a regular basis and if so how often?
View 4 Replies
View Related
Mar 27, 2010
I have a 9.04 machine that is used by the family with two accounts set up. One is mine with sudoer privileges and I prefer fluxbox. The other account is for everyone else and the rest of the family prefers gnome. Is there a way to set the default DE/windowmanager for each user so that each user simply has to login and be in their preferred environment?
View 1 Replies
View Related
Jan 7, 2010
I have a daemon running as a local user account on my red hat box. The problem is the daemon creates directories using a umask of 022. I need group write access to the directories the daemon is creating. I need the daemon to use a umask of 002. I've edited the daemons startup script in /etc/init.d I've changed the umask in the /etc/init.d/functions file. I've added the line "umask 002" in the user's ~/.bashrc and ~/.bash_profile files. I've also setup /etc/bashrc to assign all users a 002 umask (just for kicks)
View 3 Replies
View Related
Sep 3, 2010
This netbook only has a user with non-administrative privs on it and root user but I do not have root's password.Is there a way that I can create a new administrative user of change the current user's group so that it can do sudo commands or have more privs?
View 1 Replies
View Related
Jul 3, 2011
this is my first real problem that I can't solve my self.I've a test samba share called "Share" and I've created three users:
-mones
-fsu
-fsu2
[code]....
View 2 Replies
View Related
Jul 17, 2011
In my /var/www directory, I have everything set up with:
user: www-data
group: developers
directories: chmod 570
files: chmod 460
Everything seems fine. Users from the developers group can edit files and all, but now we began using the Git repository, and whenever a user edits a file (ie. Joe who is a developer,) file permissions get screwed again. Now they're:
user: Joe
group: Joe
directories: chmod 755
files: chmod 644
How can I fix this so permissions remain the same?
View 2 Replies
View Related
Apr 3, 2009
I have several directories, each owned by root and a group of the same name,By setting the sgid bit, I made sure that newly created files and directories are owned by the correct group, and that directories have the sgid bit set too.On each newly created directory or file, the permissions are set to 755. This is because this is the default umask, and I cannot change a users umask. I actually only want files created below a particular directory to have group write access, inheriting this behaviour to newly created directories properly.I'm not on samba or NFS, I have to do this for SSH users.The filesystem is ext3.I started to fool around with ACLs, but couldn't find what I was looking for.
View 3 Replies
View Related
Mar 23, 2010
I'm attempting to give a few buddies encrypted storage space through sftp using truecrypt.I have it worked out to the point where the truecrypt volume is automatically mounted when the user logs on, and dismounted when they log off.I would like to restrict each person to their individual home folders. This way, I can control exactly how much space each user is able to use (through the size of the truecrypt volume), while maintaining security through the network due to using SFTP.
I've been looking around, and the only thing I can see is restricting a large group of users to a single directory, this won't work, I need each person to be locked down to their personal home directory.My end goal is to have these volumes "mountable" in Windows through the use of Windows network drives (on a wide network, not through samba on local), or by using expandrive or a similar program. how I can lock these users to their respective home folders?
View 9 Replies
View Related
May 23, 2010
I'm wondering if it's possible to control what applications are available to certain users on a per user basis.
My motivation:
I have separate logins for audio production and general admin. Under Applications > Sound & Video I have tonnes of audio apps, but as I never use these under my general admin account, there's little reason to list all of them.
how is the applications menu configured? I'm wondering because I'd like to create some custom sections.
View 7 Replies
View Related
Jul 19, 2011
How can I create a user group that restricts Internet privileges to only members in the group, then I will assigns certain applications to join the group for access to the Internet.
For example, I want only group net to have access to the Internet. Group net is then connected to:
Code:
So far, I am using the gnome group policy manager that is standard with ubuntu but Its not working. It is possible that im misdirected and that I should use a firewall instead?
View 2 Replies
View Related
May 23, 2011
Slackware: 13.0
After having some problems with iptables not picking up automatically (without restart) the transition from winter time to summer time, and on advice from the iptables/netfilter mailing list, I've decided recently to go down the Unix way and set my hardware clock time to UTC/GMT instead of local time. I am, however, having some difficulty reconfiguring my entire machine to cope with this change.
1. I've used /usr/sbin/timeconfig - which took care of system wide timezone. After that, if I opened a terminal, du "su root" - and then check the date - it looks good. Doesn't affect though the logged in (non-root) user. Running "date" in bash window for logged (non-root) user returns wrong time (UTC) instead of local time.
2. I've added an export statement in ~/.bashrc, to set the timezone for the user account I use. That fixes the time for the logged in user, but only in the terminal. The time in fluxbox/X is still the UTC time.
Where is XOrg taking it's timezone for the logged in user? Do I amend/add to XOrg.conf? At the moment there is nothing about time zone in Xorg.conf (only contains few tweaked settings I've added to it - as I believe most of the rest is autoconfigured). I've searched - but couldn't find how Slackware configures timezones for individual users - aside from the timeconfig utility used during setup.
View 6 Replies
View Related
Oct 27, 2010
after installing openSuSE 11.3 i was thinking a bit about security. I read, it's a good idea to set umask of users to 077 . I'm unsure now, where to do this, cause there are different locations offered in the web:
/etc/login.defs
$HOME/.profile
/etc/profile - umask would be valid for root too.
And for my understanding:
- Is it wise to set root to umask 077 too or could this lead to negative effects on my system.
- Is it even senseless to umask the normal user to 077 if there is just one desktop-user using my system (myself ).
View 9 Replies
View Related
Oct 19, 2009
i want secondary users can able to change the files permissions of primary group?user MAC is having www as a primary and httpd as secondary group. But he want to change the file permissions (chmod) httpd group files. Is it possible or not? I think its not possible. If it`s possible then let me know how?
View 3 Replies
View Related
Jun 7, 2011
I have logged in with root user
My systems Umask value was 0022.
Code:
So i decided to change it to 0077 and observe the system for some time. so i edited /etc/profile and added
Code:
at the end of file
rebooted the machine.
But the umask is still showing as 0022
After the first attempt is failed I tried changing it using below command.
Code:
Validated it.
Code:
rebooted the machine but the umask is still showing 0022
So at last i have to modify /etc/bashrc file and add umask 077 at the end of the file.
How would i make it in general for all(Even for non-root user) and not just for bash prompt.
View 4 Replies
View Related
Mar 5, 2010
I want to set permissions to a folder as rwx-r-x-r-x in such a way that whenever a new file or folder is created under it, it will automatically inherit the parent folders default permissions.So,what I need to do know, do I have to change the umask value??
View 5 Replies
View Related
Mar 16, 2011
My Debian system has by default umask permissions of 0022, which I never liked. One user can read all the files of another seems very insecure to me.
I am planing to set it to 007, so that user and group have rw but all others have none.
Are there any side effects to that? I have noticed from a trial I did where I was changing permissions on the filesystem that some system stuff in the OS does not work anymore, if "others" have no read permission anymore, so that is why I am asking.
And why are chmod / umask permissions sometimes stated as 4 digits? What is this "all" group in the end? Isn't that already covered by "others"?
View 1 Replies
View Related
Jan 25, 2010
Please see below:
vim ~/.bashrc
umask=0000(bottom line)
source ~/.bashrc
But when I relogin, default umask was still 0022. How could I do ?
View 1 Replies
View Related
Jun 16, 2009
How to change Umask value permanently for all user in Red hat Version
View 1 Replies
View Related
Jun 25, 2010
I'm setting up an application server for a small organization using Ubuntu 10.04 and LTSP. We built a machine with a quad core Athlon II, got a Gigabit swtich, and a couple Gigabit ethernet cards. I burned gPXE into a couple EPROMs and turned their old PIII and Duron systems into thin clients.
So far so good.
Now, I'm trying to set up a shared directory that two users in the same group can both read and write. Let's call it "/home/shared". I want to set UMASK to 007, so that by default, files are created readable and writable by user and group, with no permissions for anybody else. I changed a line in "/etc/profile" from "umask 022" to "umask 007". After rebooting the app server, the umask does appear to be 007 when you log in at the console. However, it doesn't seem to affect the terminals.
So I figured I needed to change it in "/opt/ltsp/i386/etc/profile". vi helped me out with that. Didn't make a difference in the terminals. Ok, I need to rebuild the image, so I did an "ltsp-update-image" and rebooted the terminal. umask is still 022. ???
I changed UMASK in "/opt/ltsp/i386/etc/login.defs" and rebuilt the image. No change. ??? I really don't understand why this isn't working.
How can I change the UMASK for users who log in on an LTSP terminal?
View 2 Replies
View Related
Nov 23, 2009
I am trying to set the umask for a process(orkaudio) which is running as the root user.This program creates dir and files and I need the umask to be 022. I have edited my /etc/bashrc -- and when i type in umask i get 0022 --- Not sure how to go about getting this resolved...
View 1 Replies
View Related
Dec 28, 2009
I have 2 Oracle users that generate .tmp files under /var/tmp. By default, the files have the permissions 644. Now, a need has arisen whereby the files created by these users have to have the permission bits as 664. Obviously, I changed the UMASK value for these users from 022 to 02. But the files are still getting created with 644 as the permission.
I tried restarting the application as I read that a relogin is required for the UMASK change to take effect. Even that hasn't helped.
View 3 Replies
View Related
Feb 4, 2010
Recently I was going through some chmod manipulations and found the umask values to be 0002 by default in Fedora 11 distro. What I knew about the default values to be 022. I don't know whether this is a kernel modification in this distro or my system is in compromise(I doubt for the latter option, but not confirmed).
View 4 Replies
View Related
Jan 30, 2010
I'm struggling to understand an aspect of mounting and mountpoints with /etc/fstab. There is a large number of sites and threads that make recommendations using things like uid, gid, umask, and other options. These methods, however, which I've used, are file-system specific, useful only for filesystems such as (V)FAT and NTFS that allow them.My current situation is that I am mounting partition /dev/sdb5 in, let's call it /media/myMount. My goals:Mount this partition automatically upon boot using /etc/fstab...The partition should be fully accessible only to a specific user or group.What I've done is create the mount point in /media:
If user michapma were to carry out the mount, I believe it would work; however, I want the mount to happen automatically during boot. So, how can I achieve my user (or group) permission goals for this and any other such partitions using fstab?The manpage for mount has been helpful, but after reading many tutorials and forum threads, the only way I know how to do it is to have the user do the mounting or rely on the file-system specific options.
View 2 Replies
View Related
Oct 28, 2009
I have ext3 partition mounted on /mnt/shared/ as follows
Code:
Permissions above are of the actual mounted fs.
Goal is to have all files created on the fs
1) to belong to group 'users'
2) to have this groups permissions set to rw (rwx for directories) so that all users who belong to group 'users' have full read/write access to data and everyone else to have only read access.
Now because of setgid bit (s) in group permissions every file created has group 'users' and additionally setgid bit is set for directories. Because every users umask by default (on my system) is set to 0022 all created files will have permissions 644 for ordinary files and 755 for directories.
Net result of above means that users A and B who both belong to group 'users' won't be able to modify files created by the other.
So how can I make files created on the fs to be created always with umask 0002 WITHOUT changing default umask for users that is used elsewhere (like in their home directory) ?
View 1 Replies
View Related
May 3, 2010
Is it possible to allow a group/user to execute a command, where one of the parameters of the command is a group as well? example that does not work as intended:
Code:
Cmnd_alias SU=/bin/su -l %group1 This example works sortof, it treats the "%group1" literally. I know I can list out the "/bin/su -l <eachuser>", but as you can imagine that is impractical. In this example, I want people in group2(not shown for brevity sake) to be able to su to someone in group1
View 13 Replies
View Related
Apr 25, 2011
Not sure if this is the right place to ask this question. In Solaris we have umask (shell builtin) and /usr/bin/umask. However I could not find /usr/bin/umask in Linux.
I want to know the difference between both and how can we achieve the functionality of /usr/bin/umask in Linux as its not there...
View 6 Replies
View Related
Jun 13, 2010
What would be the effect of setting ProFTPd's user and group to the same user and group that Apache use? Are there any security risks in doing this, or is this safe to do?
View 4 Replies
View Related
Jul 5, 2010
My user/group manager in the system>administration menu is missing.Is there a command to get to the user/group manage using alt+f2 in the desktop? Or can i download the user/group manager from Ubuntu Software Center? I searched the Software Center and all i could find was the KUser user manager program... can I download it? Will it work with ubuntu 10.04?
View 3 Replies
View Related
Sep 23, 2010
I made a mistake on my friend's Ubuntu system when trying to get hard drive permissions right. I wanted to add a user to a certain group with usermod -G, but without realising I should also use -a, with the result that the user is now not longer in the sudo group. This is the only (regular) user on the system, which means I can not sudo usermod again to get it right. So what to do? The only solution I can think of is using a live disc to restore the group belongings, but I want to know if there's a quicker way. Also, I don't know what more groups the user was in. Is there a history? Or else, what are the default groups?
View 5 Replies
View Related
