Login or Register to Ask a Question and Join Our Community


UNIX for Advanced & Expert Users

home directory security

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users home directory security
# 1  
Old 08-07-2007
home directory security
Hi,

we have an FTP Server running on Unix. Users' home directories are protected with 700 permissions and all working fine. Recently we got a requirement to allow everyone to upload new files (not to overwrite existing files, of course) into others' home directories but without having provided them READ (without delete and execute) permissions. In other words, e.g., if we have 3 users A B and C then
1. A must be allowed to upload new files into B and C home directories.
2. A must NOT have any permissions on B and C homedirectores including read, delete and execute etc.

Is it possible to implement? if yes, any help would highly be appreciated

TIA

Prvn
# 2  
Old 08-07-2007
1. Is this wise?

2. Who owns the file uploaded into somebody elses home directory?

3. Is a person no longer responsible for what goes on in their own home directory?

4. Why not have a well-known subdirectory within each person's home directory for receiving foreign uploads?
# 3  
Old 08-07-2007
Thanks Porter for your reply...

Having a sub-directory in each user's home directory for foreign uploads is good idea BUT i have to compromise to 755 permissions on home_dir to allow access to the sub-folder (r-x on home_dir) whereas it is supposed to be 700.

How can we achieve my requirement without having permissions compromised?


Prvn
# 4  
Old 08-07-2007
When you say that the directory permission should be 700,
effectively this ceases the possibility of any foreign uploads
# 5  
Old 08-07-2007
Here is a suggestion.

Create a new user and home directory called "upload".

This has a directory, one per normal user with the users names as the directory names.

/home/upload/tom
/home/upload/dick
/home/upload/harry

These can have rights to allow others to put files in, do this with the group access. These directories are still owned by each individual user. Then each user has a symbolic link called "upload" in their home directory that points to their upload/user directory.

eg:

/home/tom/upload -> /home/upload/tom
# 6  
Old 08-09-2007
Thanks Porter for your solution.

This works good for me.


Prvn
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Solaris

SunOS confusing root directory and user home directory

Hello, I've just started using a Solaris machine with SunOS 5.10. After the machine is turned on, I open a Console window and at the prompt, if I execute a pwd command, it tells me I'm at my home directory (someone configured "myuser" as default user after init). ... (2 Replies)
Discussion started by: egyassun
2 Replies

2. UNIX for Dummies Questions & Answers

Could not chdir to home directory

Hi all, I just got an account created on a Linux box. When I log in, I got the error message " Could not chdir to home directory /home/yyyy : No such file or directory". When I checked the /etc/passwd file, I could see that my home directory is there. i thought when the account is created the... (3 Replies)
Discussion started by: Pouchie1
3 Replies

3. Solaris

Restricting SFTP user to a defined directory and home directory

Hi, I've created solaris user which has both FTP and SFTP Access. Using the "ftpaccess" configuration file options "guest-root" and "restricted-uid", i can restrict the user to a specific directory. But I'm unable to restrict the user when the user is logged in using SFTP. The aim is to... (1 Reply)
Discussion started by: sftpuser
1 Replies

4. Programming

Getting Home Directory

Hi I need to get the home directory of current user who is running the program, also i need to store the value in a particular variable and pass to the function. thanks in advance (4 Replies)
Discussion started by: cutechaps
4 Replies

5. Shell Programming and Scripting

home directory

hello i want shell script. as root , i want to untar specific.tar.gz to all home user directory and after untar , there is 1.txt 2.txt ~~ 26.txt in/public_html/test1/ i want randomly selected 6 text files in 1.txt 2.txt ~26.txt to be renamed newword1.word , newword2.word , ~~... (8 Replies)
Discussion started by: topic32428285
8 Replies

6. UNIX for Dummies Questions & Answers

Home directory Query

Hi I've created a script which reads in a username and checks if they are on the system. I have this working fine. I want to then print out the home directory of that user. Can someone tell me how I can do that? I only know how to print the directory of the user that is logged in. Any help would... (2 Replies)
Discussion started by: mmg2711
2 Replies

7. UNIX for Dummies Questions & Answers

home directory

Hi what is the difference between the directory named /home and the user's home directory? can anyone plz reply? really confuse about it!!!!!!!! thank you (1 Reply)
Discussion started by: nokia3100
1 Replies

8. UNIX for Dummies Questions & Answers

cd into home directory ~

I'm trying to cd into a home directory with cd ~username_here and I'm getting the following error: ~username_here: does not exist The directory exists and I can directly go to it via cd /export/home/username_here without any problems. Any suggestions? (4 Replies)
Discussion started by: here2learn
4 Replies

9. UNIX for Dummies Questions & Answers

c++ home directory??

when i compile *.cpp files the compiler didn't find the non standart includes.If i have to put the full path of the includet files where shall i begin from root dirctory or i heve to put includet files in cpp home directory??? can i compile java files in unix(linux mandrake 7) if yes haw... (3 Replies)
Discussion started by: user666
3 Replies
Login or Register to Ask a Question