Re: Unix groups and file access

From: Alan Connor (zzzzzz_at_xxx.yyy)
Date: 05/18/04

  • Next message: Flip: "Re: Unix groups and file access" 
    Date: Tue, 18 May 2004 01:52:12 GMT

    On Mon, 17 May 2004 20:54:07 -0400, Barry Margolin <barmar@alum.mit.edu> wrote:
    >
    >
    > In article <3898598f.0405171539.76135729@posting.google.com>,
    > hsphuah@usa.com (Hon Seng Phuah) wrote:
    >
    >>
    >> Barry Margolin <barmar@alum.mit.edu> wrote in message
    >> news:<barmar-F05882.00221217052004@comcast.dca.giganews.com>...
    >> > In article <3898598f.0405161747.75d5a43e@posting.google.com>,
    >> > hsphuah@usa.com (Hon Seng Phuah) wrote:
    >> >
    >> > > Hi all.
    >> > >
    >> > > I have a simple questionsa and hope to someone can guilde me. Thank
    >> > > you. I have a new group created, abc, and create file, test. I typed
    >> > > chgrp abc test and chmod 750 test.
    >> > >
    >> > > My colleague who is from group, abc, tried to read the file test, the
    >> > > system displayed permission deny. Why? My file stored in the directory
    >> > > has 755 directory permission setting.
    >> > >
    >> > > -HS Phuah
    >> >
    >> > Maybe there's an ACL on the file or directory that's more restrictive
    >> > than the permission modes.
    >
    >> What is ACL?
    >
    > Access Control List. This is a permission mechanism that provides finer
    > grained control than permission modes (you can assign permissions to
    > multiple users and groups). Directories can have a default ACL that is
    > applied to new files created there.
    >

    I searched high and low on my box, and couldn't find more than about a
    paragraph total on the the subject of ACLs, and that in my kernel docum-
    entation.

    Sure was in a lot of header files and c programs, though. But they weren't
    commented very well.

    It's an "unused, reserved" field in the inode structure on ext2 (linux).

    My first thought was the stickiy bit, but that would only prevent him from unlinking
    or moving the file.

    Be interesting to see the output of ls -l on the file and the directory.

    AC

  • Next message: Flip: "Re: Unix groups and file access"

    Relevant Pages

    • Re: Unable to prevent OU deletion by Domain Admins?
      ... What isn't fine is making it appear as if an ACL can be set a certain ... Deny permissions take precedence over allow ... >> the list of permission entries in the DACL. ... >> You could modify the default domain admins permissions so that they no ...
      (microsoft.public.win2000.active_directory)
    • Re: Samba Permissions
      ... > were what they needed to be for local users. ... > root and part of the root group. ... > else had only read and execute permission: ... It does not matter if you have only one partition, mount it with acl. ...
      (Fedora)
    • Re: Where are ACL file permissions saved?
      ... > I have just experimented how to assign file permission on a per-user basis ... > I enabled ACL support by putting the acl option in fstab and successfully ...
      (comp.os.linux.misc)
    • Where are ACL file permissions saved?
      ... I have just experimented how to assign file permission on a per-user basis ... I enabled ACL support by putting the acl option in fstab and successfully ...
      (comp.os.linux.misc)
    Loading