1
0
mirror of https://gitea.blesmrt.net/mikaela/shell-things.git synced 2025-01-12 21:32:49 +01:00
shell-things/chmod

44 lines
1.1 KiB
Plaintext
Raw Normal View History

#!/usr/bin/env bash
2023-02-21 18:08:54 +01:00
# This script removes permissions from other people than the owner to
# files/folders that they don't have access to and where they don't need
# access.
set -x
# You don't want to make this verbose.
chmod g-rwx,o-rwx "$HOME" -R
touch ~/.oidentd.conf
chmod -v u+rw,g-wx+r,o-wx+r ~/.oidentd.conf
touch ~/.ICEauthority
chmod -v o-rw+x,g-rw+x ~
2013-02-06 15:54:38 +01:00
mkdir -p ~/public_html/
chmod -v -R 755 ~/public_html/
2013-02-07 06:22:51 +01:00
touch ~/.face
touch ~/.forward
touch ~/.netrc
chmod -v a+r-wx,u+rw ~/.face
chmod -v a+r-wx,u+rw ~/.forward
chmod -v 600 ~/.netrc
mkdir -p ~/.ssh
chmod -v 700 ~/.ssh
touch ~/.ssh/authorized_keys
chmod -v 600 ~/.ssh/authorized_keys
# if we have support for setting ACL, some of this becomes easier (although maybe redundant)
if hash setfacl 2> /dev/null; then
setfacl --modify u:$(id -un):rw,g:$(id -gn):r,o:r ~/.oidentd.conf
setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX ~/public_html/
# Enabling laziness pt. …
if [[ -d ~/.shell-things ]]; then
setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX ~/.shell-things/
fi
fi
2014-10-09 21:12:25 +02:00
set +x