Unix groups and permissions

[tgpaul]

Dear all,

I'm a new customer to JPC, and I had a simple question concerning the security of my space. On the virtual servers, to whom does "group" refer? Does the group refer to all users with shell/FTP access under my account, or every user on the server? My mail folder is currently set to rwxrwx--- and the files within to rw-rw----. Is this right? Can someone else on the server read and write to my email files?

Thanks.

TGP

[jason]

The group is just you (the group name is the same as your username). Any files that are created under your acount are owned by your primary username (even if they are from a different ftp or email user). Further, JailShell prevents other users from having casual access to files that have world access, life the stuff in your public_html directory.

I haven't checked the JPC configuration, but as far as mail files are concerned, it is very often the case that they are owned by you but are grouped under the "mail" group. This gives you the ability to access your mail and the mail daemon (sendmail, exim, qmail, etc.) the ability to put your new mail into those files.

(So, the short answer is no, no one else can see your mail files.)

--Jason

[tgpaul]

Originally posted by jason
Further, JailShell prevents other users from having casual access to files that have world access, life the stuff in your public_html directory.

Yeah I did consider this. But as far as I understand, JailShell only limits your SSH access. Nothing stops someone from executing a CGI script that accesses the directory directly. This wouldn't run under the JailShell but rather as an instance of the webserver. But if the group is just my account, then my concerns at ease. Thank you.

TGP