Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
well no because you have three levels in the system, and seeing as you started it i'll use your analogy:
Owner: Rover
Group: Dogs
Others: Cats
so file with attribs a'la "ls" of say, rwxrwxr-x (or alternatively noted as 775) say that Rover made the file and any other dog can look change it, but anyone who isn't a dog, e.g. a cat can only look at the file.
a weakness?? LINUX IS INVINCIBLE!!!
hmm, funny analogy to bring up right now, as i'm currently burning a divx copy of Cats And Dogs to a cdr Go Lou!
well set the correct permissions on it and only a certain group will have access. i'd assume that if a file owner is a memeber of two groups then naturally all members of those two groups would inherit group perms... sounds bloody obvious actually!
erm, can you clarify exactly where this xxx notation has come from? i'm really struggling to see what you're getting at.... the group with read write will be the one in which the owner belongs. all other groups will have the lesser set, whatever you choose them to be...
once:
If you want to get multiple user or group permisions you will have tough time setting them up in linux. You are right that this is a weakness of Linux
if you don't know that you can use ACLs (Access Control Lists) and EA (Extended Attributes) which will enable just that
say you have dir /mama you can say
setfacl -m u:joe:rwx -m u:john:rwx ... /mama
then you can play around just like in Win nt/2k/xp
but it's not so trivial to get this working
goto acl.bestbits.at to get all info
but in short
you have to patch kernel, install fileutils, acl, ea utils, compile support for acl and reboot
(very easy and straight forward if you have done it before)
well yeah you can't specify that fundamentally, but then you can continually go round in ever decreasing circles with more and more demands on what you can and can't do with a file system. *nix file systems still totally trash FAT32 / NTFS. as to how it will relate to sharing over samba.. well why samba? assuming you're going from linux to linux then you should use nfs, and then you'll be back to the same rights issues as for a native file system. I don't think that samba will help at all, probably hinder, but as i don't share any nix drives of samba directly i don't know.
once: it works perfectly well with samba, all you need to do is include support for acl while compiling
to help you there is my configure statement for samba
If you are only concerned about this for Samba, then why don't you just specify this in the smb.conf file instead of worrying about it with the directory permissions?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.