Restricting normal user account access on Ubuntu Server
|
|
Here’s a tip to restrict normal user account access so that common users may not be able to explore other directories beyond his/her own /home directory.
- First you need to chmod all /home dir to 0700
- Then, you need to set the default umask to 077, to do that, you ned to edit /etc/profile, and replace “umask 022” with “umask 077“.
- Optionally, you can also update PAM configuration in /etc/pamd.d/common-session so that the line reads “pam_umask.so umask=077 usergroups“
The tips has been adapted from – superuser.com
Tags: authentication, chmod, console, home, homedir, linux server, pam, permission, security, Server, system, ubuntu, ubuntu server, user
Keep updated with the latest posts, be a part of over 1,000 subscribers! : 
Subscribe to your email
You might also want to read...
- How to create a limited (Guest) User Account in Ubuntu Linux
- How to get root shell in Ubuntu GNU/Linux
- Please update/patch and secure Litespeed web server
- How to use FTP filesystem on Ubuntu using CurlFtpFS
- How to use FTP in Ubuntu Linux
- How to use apt-get behind proxy server (Ubuntu/Debian)
- How to set the correct Android *.apk MIME Type for Apache Webserver
Leave a Comment