shell-things/chmod

#!/usr/bin/env bash
# This script removes permissions from other people than the owner to
# files/folders that they don't have access to and where they don't need
# access.
set -x

# You don't want to make this verbose.
chmod g-rwx,o-rwx "$HOME" -R

touch $HOME/.oidentd.conf

chmod -v u+rw,g-wx+r,o-wx+r $HOME/.oidentd.conf

touch $HOME/.ICEauthority
chmod -v o-rw+x,g-rw+x $HOME

mkdir -p $HOME/public_html/
chmod -v -R 755 $HOME/public_html/

touch $HOME/.face
touch $HOME/.forward
touch $HOME/.netrc
chmod -v a+r-wx,u+rw $HOME/.face
chmod -v a+r-wx,u+rw $HOME/.forward
chmod -v 600 $HOME/.netrc

mkdir -p $HOME/.ssh
chmod -v 700 $HOME/.ssh
touch $HOME/.ssh/authorized_keys
chmod -v 600 $HOME/.ssh/authorized_keys

mkdir -p "$HOME/AppImages"
chmod a+rx "$HOME/AppImages/" "$HOME/AppImages/*.appimage"

# if we have support for setting ACL, some of this becomes easier (although maybe redundant)
if hash setfacl 2> /dev/null; then
	setfacl --modify u:$(id -un):rw,g:$(id -gn):r,o:r $HOME/.oidentd.conf
	setfacl --modify=u:$(id -un):rwX,g:$(id -gn):rX,o:rX "$HOME/AppImages/"
	setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX $HOME/public_html/

	for appimage in $(find $HOME/AppImages/*.appimage); do
		setfacl --modify=u:$(id -un):rwX,g:$(id -gn):rX,o:rX $appimage
	done

	# Enabling laziness pt. …
	if [[ -d $HOME/.shell-things ]]; then
		setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX $HOME/.shell-things/
	fi
fi

set +x
move chmod from mkaysi.github.com/misc/chmod.sh 2013-02-06 15:45:29 +01:00			`#!/usr/bin/env bash`
sastisfy editorconfig check 2023-02-21 18:08:54 +01:00			`# This script removes permissions from other people than the owner to`
move chmod from mkaysi.github.com/misc/chmod.sh 2013-02-06 15:45:29 +01:00			`# files/folders that they don't have access to and where they don't need`
			`# access.`
chmod: following fixes * Be verbose * fix command nesting * chmod ~/public_html to 755 (for php) * create netrc and set permissions to 600 2014-07-16 12:09:59 +02:00			`set -x`
move chmod from mkaysi.github.com/misc/chmod.sh 2013-02-06 15:45:29 +01:00
chmod: fix SC quoting, add verbosity for less dangerous things 2024-04-25 16:37:26 +02:00			`# You don't want to make this verbose.`
			`chmod g-rwx,o-rwx "$HOME" -R`
move chmod from mkaysi.github.com/misc/chmod.sh 2013-02-06 15:45:29 +01:00
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`touch $HOME/.oidentd.conf`
move chmod from mkaysi.github.com/misc/chmod.sh 2013-02-06 15:45:29 +01:00
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`chmod -v u+rw,g-wx+r,o-wx+r $HOME/.oidentd.conf`
move chmod from mkaysi.github.com/misc/chmod.sh 2013-02-06 15:45:29 +01:00
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`touch $HOME/.ICEauthority`
			`chmod -v o-rw+x,g-rw+x $HOME`
move chmod from mkaysi.github.com/misc/chmod.sh 2013-02-06 15:45:29 +01:00
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`mkdir -p $HOME/public_html/`
			`chmod -v -R 755 $HOME/public_html/`
chmod: allow others to read .face and .forward 2013-02-07 06:21:59 +01:00
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`touch $HOME/.face`
			`touch $HOME/.forward`
			`touch $HOME/.netrc`
			`chmod -v a+r-wx,u+rw $HOME/.face`
			`chmod -v a+r-wx,u+rw $HOME/.forward`
			`chmod -v 600 $HOME/.netrc`
chmod: allow others to read .face and .forward 2013-02-07 06:21:59 +01:00
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`mkdir -p $HOME/.ssh`
			`chmod -v 700 $HOME/.ssh`
			`touch $HOME/.ssh/authorized_keys`
			`chmod -v 600 $HOME/.ssh/authorized_keys`
chmod: ~/.ssh & ~/.ssh/authorized_keys Closes #76 2015-06-11 13:02:05 +02:00
chmod: add ~/AppImages 2024-08-15 08:22:32 +02:00			`mkdir -p "$HOME/AppImages"`
			`chmod a+rx "$HOME/AppImages/" "$HOME/AppImages/*.appimage"`

chmod: I have a setfacl hammer, so I see setfacl nails 2024-08-08 13:17:41 +02:00			`# if we have support for setting ACL, some of this becomes easier (although maybe redundant)`
			`if hash setfacl 2> /dev/null; then`
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`setfacl --modify u:$(id -un):rw,g:$(id -gn):r,o:r $HOME/.oidentd.conf`
chmod: add ~/AppImages 2024-08-15 08:22:32 +02:00			`setfacl --modify=u:$(id -un):rwX,g:$(id -gn):rX,o:rX "$HOME/AppImages/"`
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX $HOME/public_html/`
chmod: I have a setfacl hammer, so I see setfacl nails 2024-08-08 13:17:41 +02:00
chmod: add ~/AppImages 2024-08-15 08:22:32 +02:00			`for appimage in $(find $HOME/AppImages/*.appimage); do`
			`setfacl --modify=u:$(id -un):rwX,g:$(id -gn):rX,o:rX $appimage`
			`done`

chmod: I have a setfacl hammer, so I see setfacl nails 2024-08-08 13:17:41 +02:00			`# Enabling laziness pt. …`
chmod: replace ~ with $HOME 2024-08-15 08:24:38 +02:00			`if [[ -d $HOME/.shell-things ]]; then`
			`setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX $HOME/.shell-things/`
chmod: I have a setfacl hammer, so I see setfacl nails 2024-08-08 13:17:41 +02:00			`fi`
			`fi`

chmod: set +x in the end 2014-10-09 21:12:25 +02:00			`set +x`