How to Find Files Executable by Anyone in Ubuntu

This article provides a quick method for locating files on your Ubuntu system that have world-executable permissions. Identifying these files is crucial for maintaining system security, as unnecessary execute access can expose your system to potential threats. You will learn the specific find command syntax required to scan directories and how to interpret the permission flags.

Understanding World-Executable Permissions

In Linux, file permissions are divided into user, group, and others. When a file is executable by “anyone,” it means the “others” category has the execute bit set. This is often represented as o+x in symbolic notation. Leaving scripts or binaries open to execution by all users can allow unauthorized individuals to run code on your machine.

The Find Command

To locate these files, open your terminal and use the find utility. The following command searches the current directory and all subdirectories for regular files that are executable by others:

find . -type f -perm -o+x

To search the entire filesystem, you may need sudo privileges to avoid permission denied errors:

sudo find / -type f -perm -o+x

Command Breakdown

• . or /: Specifies the starting directory (current or root).
• -type f: Ensures only regular files are listed, excluding directories.
• -perm -o+x: Filters for files where the “others” execute permission is active.

Removing World-Executable Permissions

Once you have identified the files, you can remove the unnecessary permission using the chmod command. Replace filename with the path to the file you found:

chmod o-x filename

To remove this permission from all files found in a specific directory recursively, you can combine find and chmod:

find /path/to/search -type f -perm -o+x -exec chmod o-x {} \;

Always verify that removing execute permissions does not break legitimate scripts or applications before applying changes system-wide.