permissions
I am trying to restrict access to my home directory so as to prevent another user from accessing it, even another that user also has sudo permissions.
I've tried the following commands to achieve this
sudo chmod 0750 /home/user
sudo chmod 0755 /home/user
but if other user have sudo permissions they can change the permissions easily using
sudo chmod 0755 /home/user
Is there another way around this?
What said Class Stacker in his answer is correct, but it didn't solved your problem. To prevent a directory from being deleted by the user which owns all rights to the parent directory (/home/pandya in your case) you have to use the chattr command.
Here is an example:
$ sudo mkdir dir1
$ sudo chattr +i dir1
$ rmdir dir1
rmdir: failed to remove ‘dir1’: Operation not permitted
$ rm -r dir1
rm: remove write-protected directory ‘dir1’? y
rm: cannot remove ‘dir1’: Operation not permitted
$ chattr -i dir1
chattr: Permission denied while setting flags on dir1
And in Nautilus:
Please read man chattr for more info.
Without sudo, users are limited to only having access to the /home directory in general, and then without permissions being modified for other users' home folders, they can only access their own home folder. So, as far as I know, what you're describing is largely the default behavior for non-sudo users.
That said, I think that any user can read many files in the system without sudo, but one really can't do anything without write permission anyhow, so I would consider that a moot point.
Best Answer
You can't do that. If you give sudo permission for user, he can execute any command or access any files on that system. If you don't trust your user, give him restrictive sudo access to execute only a few commands by editing /etc/sudoers file. Create a new group
adminsAdd lines to /etc/sudoers