Find the answer to your Linux question:
Results 1 to 7 of 7
Hello. I'm still kind of a linux noob and I want to be sure I am doing things right. I've searched though this --and other-- forums and still havent found ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Dec 2004
    Posts
    4

    User security guidelines


    Hello.
    I'm still kind of a linux noob and I want to be sure I am doing things right. I've searched though this --and other-- forums and still havent found the answer to my problem. Here goes

    I installed a Fedora core 3 server with SELinux.
    webmin
    vsftp
    mysql
    apache

    I created a new user to use for the ftp site and mysql database but I believe that the permissions are way too lax. For example my new user can go and browse the root directory. He cannot modify files but I see it as a sign I did something wrong.

    I don't see any general options for regulating what users can see and do what. Do I have to put this user in a particular group to limit the permissions they have on files (like browsing my root folder)?

    I have a windows NT backgrouond so maybe I'm going about this all wrong. How do I create users that can use thir home directory in FTP, use mysql databases, and little else? What is the methodology for these things?

    In addition to your replies, any useful links would also be appreciated.

    Thanks for your help.

    Scott

  2. #2
    Linux Guru lakerdonald's Avatar
    Join Date
    Jun 2004
    Location
    St. Petersburg, FL
    Posts
    5,035
    can you post the output of:
    Code:
    ls -l root
    -lakerdonald

  3. #3
    Just Joined!
    Join Date
    Dec 2004
    Posts
    4
    When logged in as the user I created (not root)

    Code:
    $ ls -l root
    ls: root: No such file or directory

  4. #4
    Linux Guru lakerdonald's Avatar
    Join Date
    Jun 2004
    Location
    St. Petersburg, FL
    Posts
    5,035
    er:
    Code:
    ls -l /root
    -lakerdonald

  5. #5
    Just Joined!
    Join Date
    Dec 2004
    Posts
    4
    sorry, I'm still a noob

    Code:
    $ ls -l /root
    ls: /root: Permission denied
    I would assume that this is a good sign but what about being able to "cd .." all the way back from my home dir. Should my user be able to do that? Shouldn't a user jsut be able to see his home dir and any dirs created from there?

  6. #6
    Linux Guru lakerdonald's Avatar
    Join Date
    Jun 2004
    Location
    St. Petersburg, FL
    Posts
    5,035
    no, users are allowed to enter the '/' directory.
    and try: "ls -l /root" as root
    -lakerdonald

  7. #7
    Just Joined!
    Join Date
    Dec 2004
    Posts
    4
    Code:
    [root@amber ~]# ls -l /root
    total 128
    -rw-r--r--  1 root root  1221 Dec 29 21:09 anaconda-ks.cfg
    -rw-r--r--  1 root root 13079 Dec 30 00:41 ddd
    -rw-r--r--  1 root root 52149 Dec 29 21:09 install.log
    -rw-r--r--  1 root root 13586 Dec 29 21:08 install.log.syslog
    -rw-r--r--  1 root root  5845 Dec 29 21:34 public.gpg.key
    drwxr-xr-x  6 root bin   4096 Dec 13 10:10 vsftpd
    no, users are allowed to enter the '/' directory
    So this is normal?



    EDIT: Thank you much for your replies.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •