-----Original Message-----
From: Ow Mun Heng [mailto:Ow.Mun.Heng wdc.com]
Sent: Tuesday, April 04, 2006 9:06 AM
To: gentoo-serverlists.gentoo.org
Subject: RE: [gentoo-server] dissapearing virtual maildirs
On Tue, 2006-04-04 at 08:53 +0200, Jean Blignaut wrote:
>
> So I was wondering if there is some way to devide file
permissions
into
> more than just rwx how about "may be deleted
by" - u/g/o and maybe
"may
> be created by" - u/g/o or some such (call it
precation or maybe just
> laziness to implement too much error checking in
scripts) I hope that
> some thing like this is covered by extended attributes
or some thing
but
> I haven't had too much luck finding documentation on
the subject.
Have you looked at ACLs?
getfacl
setfacl etc?
They do provide more fine grained controls. Eg: file owned
by root:root,
but you want user "popeye" to be able to write
to it.
eg: setfacl -m u:popeye:rwx,u:oliveoil:r filename
rememeber to mount your dir with "acl" mount -o
remount,acl /dev/hdX
--
Ow Mun Heng
Thanks I'll look into that but it seams more user/access
orientated
rather than giving me more elaborate permissions/attributes.
I seem to remember that in Novelle DOS 7 199* they had
security
attribs/perms like create,delete,overwrite,move,read so that
if you had
only overwrite and read you would be able to edit a file but
not delete
it.
Some thing like that around? Inoticed that vserver seems to
use some
sort of attribs but can't quite figure out how they work
exactly
--
gentoo-servergentoo.org mailing list
|