I was horrified to find my home dir open, and Googled this post. I simply can't believe the rationale - okay, we are geeks using Linux wearing tinfoil hats but please: you are going to sacrifice security for the sake of ... I don't exactly know how to put it... a badly implemented sharing feature, perhaps?
Running a webserver, I found out that if someone somehow manages to get shell access with the very limited webserver user, which runs silly rbash (restricted bash), they will have access to ALL users home dirs - also administrators. But of course, then they will be pleased to see, how easy filesharing is on Ubuntu. There must be a more intelligent solution to this security issue. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/48734 Title: Home permissions too open To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/adduser/+bug/48734/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
