Hello,

The scenario for my problem is: I have a shared folder of projects, with subfolders, one for each project. Each of these subfolders have a different group (GID) on my system, so I assign users to each project.

I want that all users belonging to a project (included on the project group) have all access rights to all files on the project's folder. All user not belonging to a project should be denied ALL access rights to the corresponding folder.

Using "chmod g+s projectfolder/" is enough to chance the group as each person creates files for the project.

But this won't change the "other" access rights, wich is my problem now. Do I depend on each user's umask? I want to force them to use umask 007 on these project files (and not necessarily on others), outside the projects folders.

Thank you.

Ps: I have read the chmod and chown manual pages, and the page http://www.comptechdoc.org/os/linux/..._ugfilesp.html. (not saying that I have got it all )

You can't enforce a umask on users with default tools and have them be productive (eg. you could use a restricted shell, but that will most likely restrict users too much for your needs).

Make the main project directory
- owned by you, group you.
- perms 755
Make each project/projX directory
- owned by you, group projX.
- perms 770

Now, regardless of permissions on files in project/projX, the no execute permission on project/projX prevents Others from using that component in any path (they can't traverse past project).

1 members found this post helpful.