Paul de Weerd wrote: > Welcome, to the real world. Users are incapable of just about > anything. Except for fucking things up, they're extremely good at > that. Live with it.
So wait, are you for or against creating lone groups for individual users? All I was trying to communicate is that the exposure of a users home directory is something that must be dealt with by system administrators or preferably by the individual users themselves. By default on OpenBSD, home directories are world readable, the installer (..if directed) uses user(8) tools to create a default account, this adds the user to the shared 'users' group. This is expected behaviour for people who use the user(8) tools directly, all users can read each others files and if they're in the same group can even allow write access for shared work. It seems people using adduser(8) are accustomed to having world readable files, and no shared group by default. People should really take a look at the default permissions in /home on a case-by-case basis (..who is on the system, how many users) and choose permissions that make sense.. educating users about the your system defaults and how to change them also makes a lot of sense. Changing behaviour of either command is quite likely to wake a few people up, but, that's life.. they will have to deal with it. :-) -Bryan.
