Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
|
07-26-2006, 10:03 PM
|
#1
|
Member
Registered: Apr 2006
Distribution: Gentoo 2005.1
Posts: 32
Rep:
|
permissions wont allow me to write
as the controller of my file server, i want to be able to access all accounts on it without any problems. for some reason, after mounting one of the accounts to my personal home folder from the server, and try putting a file on it, i get this error.
Error "File not found" while copying "/home/justin...s/intro.doc".
I give all accounts (except mine) chmod 550, so that they can't write to their home folder, and can't look in other peoples folder. But when i sign into my account, i want to be able to see everything, and be able to do anything i want. delete files, create files, look into people's home folders. any ideas?
|
|
|
07-26-2006, 10:24 PM
|
#2
|
Member
Registered: Nov 2004
Location: Toronto, Canada
Distribution: Debian, OpenBSD, SuSE, Ubuntu
Posts: 68
Rep:
|
please provide more info
Hi Justin,
This might be a permission issue, or it might be something else. Could you post your /etc/fstab or the mount command you used to manually mount the file system? Is the file system you're mounting on the same server (e.g., separate partition) or is it a network share?
To be thorough, once you have your file system mounted also post the outpout of "cat /etc/mtab".
Scott
|
|
|
07-26-2006, 10:42 PM
|
#3
|
LQ Guru
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507
Rep: 
|
Umm, use a root account?
|
|
|
07-26-2006, 10:50 PM
|
#4
|
Senior Member
Registered: Aug 2005
Posts: 1,755
Rep:
|
Quote:
Originally Posted by Justin2021
I give all accounts (except mine) chmod 550, so that they can't write to their home folder, and can't look in other peoples folder.
|
What does it mean to "give all accounts (except mine) chmod 550"? And why would you want to do this? There's no point to denying permissions to the owner of something (since they control the permissions).
|
|
|
07-26-2006, 10:56 PM
|
#5
|
Senior Member
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,141
Rep: 
|
If you mounted a partition at your home directory you won't see any of the files that were in that directory. For example, if you have a file called /home/justin/intro.doc and then you mount a partition with something like mount /dev/something /home/justin then the files that were in /home/justin are no longer visible. After you umount with umount /dev/something then /home/justin/intro.doc will again be visible.
You could mount the partition a level lower, for example mount /dev/something /home/justin/mnt and that would work. Either that, or I'm mis-interpreting your error
Please read spooon's reply carefully - if you do chmod 0550 /home/bloggs and bloggs is the owner of /home/bloggs, then bloggs can change the permissions to whatever they like.
|
|
|
07-26-2006, 10:57 PM
|
#6
|
Member
Registered: Nov 2004
Location: Toronto, Canada
Distribution: Debian, OpenBSD, SuSE, Ubuntu
Posts: 68
Rep:
|
I'm guessing by "accounts" he means home directories?
|
|
|
07-26-2006, 10:58 PM
|
#7
|
Member
Registered: Apr 2006
Distribution: Gentoo 2005.1
Posts: 32
Original Poster
Rep:
|
to mount my account on the debian server, i used the program smb4k, which is a graphical program that allows mounting shares and acts as a samba client. and it is a network share because it's not part of the harddrive im using now, its in the server.
here is my /etc/fstab on my ubuntu desktop
Code:
# /etc/fstab: static file system information.
#
# <file system> <mount point> <type> <options> <dump> <pass>
proc /proc proc defaults 0 0
/dev/hda1 / ext3 defaults,errors=remount-ro 0 1
/dev/hda5 none swap sw 0 0
/dev/hdd /media/cdrom0 udf,iso9660 user,noauto 0 0
and here is the one on my debian server
Code:
# /etc/fstab: static file system information.
#
# <file system> <mount point> <type> <options> <dump> <pass>
proc /proc proc defaults 0 0
/dev/hda2 / ext3 defaults,errors=remount-ro 0 1
/dev/hda1 /home ext3 defaults 0 2
/dev/hdc /media/cdrom0 iso9660 ro,user,noauto 0 0
/dev/fd0 /media/floppy0 auto rw,user,noauto 0 0
ubuntu's mtab:
/dev/hda1 / ext3 rw,errors=remount-ro 0 0
proc /proc proc rw 0 0
/sys /sys sysfs rw 0 0
varrun /var/run tmpfs rw 0 0
varlock /var/lock tmpfs rw 0 0
procbususb /proc/bus/usb usbfs rw 0 0
udev /dev tmpfs rw 0 0
devpts /dev/pts devpts rw,gid=5,mode=620 0 0
devshm /dev/shm tmpfs rw 0 0
lrm /lib/modules/2.6.15-26-386/volatile tmpfs rw 0 0
/dev/hdc /media/cdrom-1 udf ro,nosuid,nodev,uid=1000,gid=1000,umask=007,iochars$//DEBIAN/ninjamasterbobby /home/justin/debian/DEBIAN/ninjamasterbobby smbfs rw $
debian server's mtab:
/dev/hda2 / ext3 rw,errors=remount-ro 0 0
proc /proc proc rw 0 0
devpts /dev/pts devpts rw,gid=5,mode=620 0 0
tmpfs /dev/shm tmpfs rw 0 0
/dev/hda1 /home ext3 rw 0 0
usbfs /proc/bus/usb usbfs rw 0 0
and i am using ubuntu so i dont know how to graphically log into root. also, i am denying these permisions because i dont want them to put stuff into the server, i just want them to take stuff from it. in other words i dont want it used as a storage space for their stuff. is there anyway to not let them change their permissions?
Last edited by Justin2021; 07-26-2006 at 10:59 PM.
|
|
|
07-26-2006, 11:12 PM
|
#8
|
LQ Guru
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507
Rep: 
|
Quote:
Originally Posted by Justin2021
and i am using ubuntu so i dont know how to graphically log into root. also, i am denying these permisions because i dont want them to put stuff into the server, i just want them to take stuff from it. in other words i dont want it used as a storage space for their stuff. is there anyway to not let them change their permissions?
|
Never log into X as root. Ubuntu's good in that way.
If you just want them to 'take', why don't you just create a shared directory that allows access from anyone?
|
|
|
07-26-2006, 11:20 PM
|
#9
|
Member
Registered: Apr 2006
Distribution: Gentoo 2005.1
Posts: 32
Original Poster
Rep:
|
the reason is because there are certain people who i want to only have certain things.
|
|
|
07-26-2006, 11:26 PM
|
#10
|
Member
Registered: Nov 2004
Location: Toronto, Canada
Distribution: Debian, OpenBSD, SuSE, Ubuntu
Posts: 68
Rep:
|
Could you clarify which server is supposed to be doing what and what you are trying to do with the servers? For ex., what directory on which server do you want users to access but not write to? How are users getting access to that directory -- Samba, http, a graphical or terminal session on the file server, NFS?
Scott
|
|
|
07-26-2006, 11:29 PM
|
#11
|
LQ Guru
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507
Rep: 
|
This might be one of those occasions where acls are appropriate.
|
|
|
07-26-2006, 11:40 PM
|
#12
|
Member
Registered: Apr 2006
Distribution: Gentoo 2005.1
Posts: 32
Original Poster
Rep:
|
okay, i have a debian server running samba that i want to use as a sort of repository. you can get stuff from it, but you cant add to it. every person's account can't be written to by them, but i want to be able to write and add to it. lets say i made an account for a friend and its called /home/travis/. well, i want travis to only be able to draw from this account, and not be able to store things in this accoutn, for hard drive space reasons. but yet, if i want to give travis something, lets say a text file, i have the power to go into his acount and put that text file in there, without having any permission problems. those people would be using ssh to get to their account.
|
|
|
07-27-2006, 12:43 AM
|
#13
|
LQ Guru
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507
Rep: 
|
If you're going to use samba, why not just set "read only = yes" on the shares?
|
|
|
07-27-2006, 01:19 AM
|
#14
|
Member
Registered: Apr 2006
Distribution: Gentoo 2005.1
Posts: 32
Original Poster
Rep:
|
Quote:
Originally Posted by Matir
If you're going to use samba, why not just set "read only = yes" on the shares?
|
because when the people log on, they are not connecting to samba, they are actually going into the server and accessing their home folders in the server.
|
|
|
07-27-2006, 01:27 AM
|
#15
|
LQ Guru
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507
Rep: 
|
Ok, so you want users with full SSH access to be unable to write to any part of the system? That'll need quite a bit of tweaking. Take /tmp for example... any user can write files there.
Securing their home directory... I guess you'd need to create a group for each user, then make their home directory owned by root:<their group> with permissions like 750. Then place files in there and set the owner and permission accordingly as well.
|
|
|
All times are GMT -5. The time now is 01:30 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|