Can The Permissions Of a Service-User's Home Folder (Such As /var/lib/nfs/) Be Less Permissive Than 755 (rwxr-xr-x)? (Doc ID 2883349.1)

Last updated on NOVEMBER 15, 2022

Applies to:

Oracle Cloud Infrastructure - Version N/A to N/A [Release 1.0]
Linux OS - Version Oracle Linux 6.0 to N/A [Release OL6 to OL8U4]
Information in this document applies to any platform.

Goal

Clarify if the below security request regarding a service-user's home folder is supported and if it can be implemented:

The permissions for home directory of user nfsnobody was found to be 755 which is more permissive than 750

This Document applies directly to the the "/var/lib/nfs/" folder (home folder of the "nfsnobody" service-user) but the same can be stated regarding other folders such as but not limited to:

the "/var/lib/chrony/" path related to the "chrony" account;
the "/var/lib/geoclue/" path realted to the "geoclue" account;
the "/var/lib/colord/" path related to the "colord" account;
the "/usr/share/sane/" path related to the "saned" account;
the "/etc/unbound/" path related to the "unbound" account.

Solution

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

Goal

Solution

References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Can The Permissions Of a Service-User's Home Folder (Such As /var/lib/nfs/) Be Less Permissive Than 755 (rwxr-xr-x)? (Doc ID 2883349.1)

Applies to:

Goal

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!