Private Home Directories for Ubuntu 21.04

To me, user accounts have always seemed like the more reasonable approach to sandboxing vs. cloning the universe to run a single program in a container.<p>Most of my systems have a user for myself, and one or two other users like `sketchy` or `test` or something for programs that I trust enough to run, but don&#x27;t trust enough to not fuck up my home directory in some way (including modifying startup scripts, which IMHO should probably require sudo to edit, even for a normal user).<p>If the program is <i>really</i> sketchy and you&#x27;re worried about it doing something like exfiltrating ~&#x2F;Documents&#x2F;taxes, then private home directories would definitely seem like a good default. You can always have an explicitly shared area like &#x2F;home&#x2F;shared&#x2F;$user that defaults to public.

This is just changing the default permissions on a home directory -not a more complicated encrypted&#x2F;systemd setup I thought it would be.

Makes sense to me, but I&#x27;d be much more excited to go back to not having the snap directory shoved in my face.

I wish such announcements would include a reference to the bug tracker where the change was discussed:<p><a href="https:&#x2F;&#x2F;bugs.launchpad.net&#x2F;ubuntu&#x2F;+source&#x2F;adduser&#x2F;+bug&#x2F;48734" rel="nofollow">https:&#x2F;&#x2F;bugs.launchpad.net&#x2F;ubuntu&#x2F;+source&#x2F;adduser&#x2F;+bug&#x2F;48734</a>

This could be simplified to <a href="https:&#x2F;&#x2F;bugs.launchpad.net&#x2F;ubuntu&#x2F;+source&#x2F;adduser&#x2F;+bug&#x2F;48734" rel="nofollow">https:&#x2F;&#x2F;bugs.launchpad.net&#x2F;ubuntu&#x2F;+source&#x2F;adduser&#x2F;+bug&#x2F;48734</a> is fixed.

Even Ubuntu&#x27;s calling Linux home desktop &#x27;quaint&#x27; now..

Tl;dr home directories now default to 750.

While the change makes sense, it&#x27;s going to be a massive headache to fix all existing software that runs as its own user when upgrading.

Too bad Red Hat is going the opposite direction with their Toolbox container management project, sharing your entire home dir with every container but not explicitly documenting this:<p><a href="https:&#x2F;&#x2F;github.com&#x2F;containers&#x2F;toolbox&#x2F;issues&#x2F;183" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;containers&#x2F;toolbox&#x2F;issues&#x2F;183</a>

I remember a while ago, Ubuntu used encryptfs for home directories, but it was removed. Weird, because I thought it was a great idea

Isn’t this what Windows has done by default for a while now? Every user’s home directory is private to that user.

&gt; This change now means that in the future if an attacker were to exploit some previously unknown vulnerability in a given system service that is running as a separate user, they would then not be able to access the data of any other user (both human or system service) on the system.<p>If the attacker can already access arbitrary files on your box, I don&#x27;t think simple unix permissions will save you

Ubuntu should develop shadow accounts - the user will log in to a completely different account of the same login depending on password. That is if someone forces you to log in you could use different password and pretend it is your stuff.

This is already the case with systemd-homed.