Can The Permissions Of a Service-User's Home Folder (Such As /var/lib/nfs/) Be Less Permissive Than 755 (rwxr-xr-x)?
(Doc ID 2883349.1)
Last updated on NOVEMBER 15, 2022
Applies to:
Oracle Cloud Infrastructure - Version N/A to N/A [Release 1.0]Linux OS - Version Oracle Linux 6.0 to N/A [Release OL6 to OL8U4]
Information in this document applies to any platform.
Goal
Clarify if the below security request regarding a service-user's home folder is supported and if it can be implemented:
The permissions for home directory of user nfsnobody was found to be 755 which is more permissive than 750
This Document applies directly to the the "/var/lib/nfs/" folder (home folder of the "nfsnobody" service-user) but the same can be stated regarding other folders such as but not limited to:
- the "/var/lib/chrony/" path related to the "chrony" account;
- the "/var/lib/geoclue/" path realted to the "geoclue" account;
- the "/var/lib/colord/" path related to the "colord" account;
- the "/usr/share/sane/" path related to the "saned" account;
- the "/etc/unbound/" path related to the "unbound" account.
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Solution |
References |