Re: [seul-edu] Students can access Principal's files!

[Les Richardson <richl@mail.tfsd.sk.ca>]

Hi Robert,

Once you've killed off cron, etc. then it must be another process that is
running as root (with root level file change permissions). Kill off
anything that is not _absolutely_ required. Also lower access level for
any processes that can run as a different user. A minimal setup like that
should allow you to find the culprit. If not sure, keep killing things off
until you do...

Mountd and nfsd don't do this, in my experience...  Do you have quota
support enabled?

Les 


On Wed, 1 May 2002, Robert Maynord wrote:

> Dear Seul Folks:
> 
> I have close to 70 machines running on our school network now - almost 
> all Linux.  Students log in with NIS, and load their HOME directories 
>  with NFS.  The server is running Mandrake 8.0. All works fine, except 
> for one problem:  the server won't let me change permissions on the HOME 
> directories, and they are set to 755.  This means that all the students 
> can access the principal's HOME directory for viewing.  They can also 
> view each other's directories.  When I try to change permissions on the 
> HOME directories to 700 (as root) they stay changed for about 15 
> minutes, and then change back!!!!
> 
> I have tried disabling msec and it made no difference.  I have also 
> disabled cron - but no luck.  Something is auto-changing the permissions.
> 
> I have been looking for 2 weeks, but no luck.  Does anyone have a clue 
> as to what might be auto-setting my HOME directory permissions?
> 
> 
> Thanks!
> 
> Robert Maynord
> 
> 
>