I just added a new user to my ubuntu:
sudo adduser james
When james logs in he access his folder BUT he can also access other user's folders. How can I prevent his access to others? I wish to restrict his account to his folder only (he can read/write).
i'm having trouble with my fresh ubuntu installation (netbook edition). what i did was install xubuntu-desktop on top of that (wanted to check it out)..........didn't really work for me, so i removed it, hoping this would also remove the xubuntu desktop logon screen, which i didn't like. since this wasn't the case, i went to synaptics and removed all and everything with xubuntu in the title. NOTE: in the same session i turned off password requests for login - it could also matter, but i'm not sure, so i thought i'd mention it. the end result: three warning messages at logon
- Could not update ICEauthority file /home/dsikl/.ICEauthority
- There is a problem with the configuration server. (/usr/lib/bgconf2-4/gconf-sanity-check-2 exited with status 256)
- Nautilus could not create the following required folders: /home/dsikl/Desktop, /home/dsikl/.nautilus. Before running Nautilus, please create these folders, or set permissions such that Nautilus can create them.
i don't have access to my programs, administrator tools, /home folder, nothing.........the only thing that appears is the right part of the top bar (network, clock etc.), but also completely different.......it doesn't have my WLAN data anymore (can't access it), and all i have managed to get started was (accidentally) terminal with Ctrl-Alt-T, and from there I can use sudo, or even start nautilus, but can't access my own user, no matter what.........in the end i somehow managed to get to the point where it requested my passphrase, which i wanted to print out a day before it happened, but didn't and the screenshot is unfortunately within my /home folder. i tried reinstalling xubuntu-desktop, even ubuntu-desktop, i repaired broken packages from the recovery mode, tried everything i could to get the bugger going again, no success yet.
i would be happy to do a clean install, but there's one spreadsheet in the documents folder which i desperately need and i really need to get a hold of it before formating. could some sort of a rescue livecd help? i just need that one file. the easiest would be if i could somehow repair whatever packages may be broken, or manually (with apt-get or similar) reinstall the additional xubuntu packages i manually removed via synaptics, but i wouldn't have a clue what those were
I wanna make a small web server for local use , I've installed apache, every thing works fine I'm the root
I wanna protect the folder that contain the htdocs files (www), i don't want any users that not in root group to access (not even read)
I changed the permission of the htdocs folder as next
Owner: www (apache user)
per: creat , delete
group: root
per: creat , delete
other: none
it only works on the main folder that i changed its permissions ! not all sub folders and files ! were my steps right ? and are their anyway to change all folders and files at once ?
How do I add root permissions to my user account?
I want full permissions for all computers in my house, without having to get up and go to the other room and change permissions for the file, folder, drive, directory, computer, etc., then go back to the other room again.
I just created a partition, as THIS user, THIS machine, rebooted, and cannot create a folder on the partition I just created. UGH. No more of this stuff... I guess at the very least, I'll still have to log onto each machine for this?
I want to have an account (beta user), on which:I can use the Internet and other programs without administrative rights without the right to install programs with a kind of sandbox for everything that is connected to the Internet, which means: everything that is associated with the web browser's processes and files that I save to hard disk I want to be separated from the rest of the system, so that whatever can catch up on this account will be locked in it, for example any (if at all) possible malicious scripts from Internet or whatever may be dangerous now or invented in the future. Sometimes, for example, I save the web page to disk with all it content.
And in case someone cracked into this account I want make it in that way that he could not do any tricks to read or change passwords, or make any other changes to the system. The best would be if a password for that user might serve only to log in without having any other powers, and I would give that user an automatic login. For now I created a beta user without administrative rights. I understand that the limiting rights of the user are associated with limiting rights to their home directory. There are also groups, and a user may be included or excluded. I excluded that user from admin group but I don't know what else I can limit and how. When I give chmod 0644 for /home of this user he cannot run Firefox. When I give him 0740 he can run applications, so I assume the x attribute must be preserved.
This is a user without sudo rights, so when I type sudo apt-get update a message shows up correctly that this user doesn't belong to the sudoers group. But still it's not what I wanted. When the user runs Gufw and wants to change the settings to disable the firewall, a message shows up asking to type in a password of alpha user = primary user, which is that belonging to the sudoers group, the first / main user that I created during system installation. I wish that there was only the message that the beta user has no power to change anything, which means even completely remove the possibility of asking for sudo.
In addition, I wish that this beta couldn't be able to change the permissions to its home directory, or go to see what is above. Because so far beta can change the file permissions for its /home, even without a sudo password. How can I do it? Do I need to create a kind of chroot jail for this user? I would like any changes to that user account could be made only after the user log off from beta account, and log in on alfa account and that beta could run only programs that ware installed by alpha. And that beta could read and write, but alfa could also read and write or remove, alter files on beta account. Basically, alfa account should be superior to beta account. Can do that?
Picture the following:On computer A, local user John (and John alone) has rwx access to file1.txtComputer B also has a local user account named John. If file1.txt was to be copied from computer A to computer B, would the user account John on computer B be able to access it?I guess this wouldn't work using two windows computers due to the User name / GUID relationship. Maybe linux has something similar?
View 4 Replies View Relatedlook at this : Uploaded with ImageShack.us how can set permissions in linux like this? I want one user can delete files but can't modify them and ... in linux i have 3 group to assign read write and execute them. is ntfs flexible than linux file system?
View 4 Replies View RelatedHowever, configured a website on a dedicated server using WHM/cPanel. The site was uploaded using the master account for the website.
The security issue is public users are able to upload files on to my server via the website. They could even access the root and execute whatever they want on the server.
I have consulted with 2-3 Linux experts. According to them, the PHP user has rights to execute anything on the server or upload & store files in whichever folder they want.
Can I protect my folders to avoid file uploads via the website. The application has security vulnerabilites. However, I want to prevent hackers to enter my site until the vulnerabilities are fixed.
According to Security standards given in[URL]Quote:Unless otherwise approved the following setuid root binaries are the only ones allowed on production servers:
* /bin/su
* /usr/bin/sudo
* /usr/bin/passwd
[code]....
I'm running Apache2 under uBuntu 9.10. My problem is that I use my own user "wavesailor" to work on my websites. I kept all my sites under /var/www and I set up the security of the directory after following the guidelines.
Code:
sudo chown -R root:root /var/www
sudo chown -R www-data:www-data /var/www/*
[code]...
I have a quick question that I haven't been able to find an answer for so far. Is it possible to 'hide' a user from the user list in gdm? Note that I don't want to remove it entirely, I just want a user that you can only get into by clicking 'other', entering your name and password.
View 2 Replies View RelatedIs it possible "reset" all (X, GDM related) permissions/settings of one user? What would cause one specific user not to be able to log into anything via gdm/the login screen? After providing the proper password, the screen goes black and then jumps back to the login screen. No session alternative works, not even xterm or gnome failsafe. I can however log in via the console (Ctrl+Alt+F6, recovery etc). With another user I can log in via GDM just fine, and deleting and re-adding the "broken" user doesn't make any difference.
Some (maybe) relevent logs:
part of syslog:
Quote:
Dec 12 01:20:58 <specific user> pulseaudio[1358]: core-util.c: Home directory /etc/timidity not ours.
Dec 12 01:20:58 <specific user> pulseaudio[1358]: lock-autospawn.c: Cannot access autospawn lock.
[code]....
Ubuntu 10.10
I was setting up a machine for a friend using my normal username. Once the install was finished I created a new account (Admin) for the friend, logged out, logged in as the friend and deleted my own account. On the next reboot I get a message about not being able to update .ICEauthority for my own account, which I thought was deleted. Then there are messages about the configuration server failing and that Nautilus can't find the home dir for my own account, then just the desktop background, no panel, no nothing, just hangs.
Obviously, in this case deleting the account didn't clean up everything. How can I get to the login prompt for the friend's account?
I've installed the ssh server on my Ubuntu desktop and the very first time I accessed the server from my laptop, it got a message asking me whether to permanently add the key of the server. After I added this, it gave me a message saying that the key had been permanently added. My question is how do I remove this key? I just want to know how to do this because I'm going to disable password based logins and I want to start anew.
View 6 Replies View Relatedcommand for adding a user and removing a user.
View 3 Replies View RelatedI need to do a reinstall (read the details here): http://ubuntuforums.org/showthread.php?t=1703381 but I need to be able to access my home directory which is encrypted. Is there a way to decrypt my home folder, so that I don't get into trouble accessing it later on?
View 9 Replies View RelatedYesterday I installed a program called localepurge to remove the locales I don't need, I've chosen only en and ar to maintain and removed the rest, after restarting, can't access the ubuntu, I wrote the password manytimes and checked the upper and lowercase. I'm using Ubuntu 11.04 on a Toshiba L500 laptop
View 1 Replies View RelatedI could not find any where the documentation the only best which I got was [URL]
My question is the following blog says to remove an IP from /etc/hosts.deny which denyhost has blocked
[URL] you need to have a directory /usr/share/denyhosts/data I do not find any such directory
Also when I tried to check tcp wrapper configuration as given here
[URL]
tcpdchk -v Cannot find your inetd.conf or tlid.conf file. Please specify its location.
what does the above output mean? How do I make sure denyhosts is doing its job?
I am going to remove root access via SSH which seems fine but I don't know how to add a new user, do I have to create a group first or are there existing groups I can add a user to, and does it matter which group I add a user to if I want this user to have root access with sudo?
View 11 Replies View RelatedI have a computer running Fedora 14 and when I installed it, I chose to encrypt the drive.
I've recently changed the way I have things set up and don't want the encryption any more. From what I've read there is no way to simply and easily remove the encryption, so what I would like to do is input the pass phrase remotely.
so, Is there anyway I can type in the pass phrase remotely, or remove the encryption?
What does Set user ID do? Reason I ask is if I select "Set group ID" it makes it so any files/folders created within that directory get the group accordingly. But if I select "Set user ID", it doesn't do anything that I notice. I thought maybe it would change it so any files/folders created get that user set as the owner. So if that's not it - what's its purpose?
View 2 Replies View RelatedI just started dual booting Ubuntu 10.10 on my mini 10v with OS X a couple days ago, so I'm still pretty new to Linux.
But anyhow, I was attempting to change my User ID number so I could access the files in my User folder on my OS X partition. So, I tried entering the following commands:
sudo usermod -u 501 yourusername
sudo chown -R 501 /home/yourusername
Of course, smart me should've realized I should've been logged out and on a different administrative account to do this. But I didn't, and I believe the second command didn't work. So, whatever, I thought I'd try logging out and logging in as root.
So, I logged out, tried logging in as root, and of course, no dice because I didn't know the password. So then I tried logging onto my account and upon logging in, I got two errors. One was about ".ICEauthority" and I didn't keep track of what the other one was.
Great. So I did a quick google for the error, then tried entering these codes:
$ sudo chown user:user home/user/.ICEauthority
$ sudo chmod 664 /home/user/.ICEautority
$ exit
[Code].....
And again, I think the last one didn't work. So, I looked up how to login as root, changed the password and logged in as root successfully. Then, whilst in root, I entered:
/usr/sbin/usermod -u 12345 joeuser
/usr/bin/find / -user 701 -print | xargs -t chown joeuser
/usr/bin/find / -user 701 -exec chown joeuser {} ;
Upon entering those, I logged out and logged back into my account and everything was a complete success. No error messages anywheres AND I could access the files in my Mac user folder.
So, here's my question. How can I make sure I have all the right permissions I need? Or do I already have the all of the permissions I had before changing my user id?
Did those last three lines of code I entered "override" all of the codes I had entered previously? I just want to make sure verify I have all the correct permissions necessary so I don't run into any issues later on.
How do I add root permissions to my user account?
I want full permissions for all computers in my house, without having to get up and go to the other room and change permissions for the file, then go back to the other room again.
I just created a partition, as THIS user, THIS machine, rebooted, and cannot create a folder on the partition I just created. UGH. No more of this stuff...
created a user but i forgot to change the home directory permission.so after user created when i go to the user and group mangement i cant see that permission filed related to the home permission directory.my purpose is to stop accessing other user to my home directory,how it can be possible??
View 4 Replies View RelatedI just installed Ubuntu workstation into VMware and then installed Apache, Mysql, PHP, and phpmyadmin.I am able to access Apache from any computer in my home so there is not issue there.The issue I am facing is when I try to copy anything into /var/www/ I get a permission denied messsage.I added myself to the administrators group and then rebooted but still get the same message.
I was able to access it by using the following command...gksu nautilus.I don't want to have to do that every time. I would like to be able to access it by just opening "Documents" and the selecting "file system" inside of Nautilus.
Since I do not like any of shell themes i downloaded, today I decided to remove user theme shell-extension.I removed it from the : Add/remove software, from menu.After logging out, and in, I keep getting : Gnome shell crashed, please log out.I have downloaded few shell themes from gnome look, and they all work.. But did not like them, always used default theme, so I decided to remove extension..
I removed "user theme" extension, but I did not delete "theme selector extension" from ~/.local/gnome-shell/ extensions.I just deleted it's folder from extensions, restarted, and I'm back in my Fedora.
How can check that I have full permissions on anything should I set my self as root? There are a lot of files it said your not the owner so you can't change but if I'm not the owner then who is?
View 9 Replies View RelatedI am running Ubuntu server with an SSH server installed. How can I create an ubuntu user and give that user permissions to read and write only 1 specific folder so someone can log in through SSH using the new username and only put files in the folder I specify?
View 2 Replies View RelatedMy main account 'dave' runs as admin etc This was the output of 'groups dave': dave adm dialout cdrom plugdev lpadmin sambashare admin I was trying to add dave to the user group 'media-www' and i ran this command: 'usermod -G media-www dave' Then after another 'groups dave':
dave : dave media-www It seems to have removed all the other groups! How do I restore this?
I'd like to set up my PC so that it has one "master account" for system settings, desktop appearance, etc. And then I'd like other user accounts that read these settings so if I change the settings on the master account, those accounts follow the new settings but cannot change them. But at the same time, these accounts cannot be allowed to read to master account's personal files (documents, music, etc.) Each account would be restricted to its own home directory, as expected.
Is there any way to set something like this up or am I dreaming of the impossible?