Hi.

I have shared a folders .../folder1/folder2/folder3
And set full access to group1, to all folders and subfolders

Now i need that one user1 can acces only folder3 and the group can have full access, like it is at the moment.
User1 must have only acces to folder2 files.

Please help ????

Welcome to LQ Security.

Let's start by asking what have your tried so far? Are you familiar with how Linux permissions works with read, write, and execute access control for the owner, group, and others? The potential trouble you face with your structure is that if you make folder3 a sub folder of one and two, that user1 won't be able to access folder3 because of the path traversal.

Try this experiment: as root, under the root directory, /root create folder1, folder2, folder3 as in your structure. Then change the permissions on folder1 and folder2 to disallow others and group read access. Since they are directories you must keep the execute permission for them to be useable. So, issue "chmod og-r" on folder1 and folder2. Then create a small text file in each of the three folders. Now, become a normal user and try to read the files. You won't be able to. Neither will you be able to cd to the directories. The problem is that you lack read permission on /root, which prohibits you from accessing the stuff below it.

Now, (as root) move this folder structure to /, which is still root territory, but a normal user can read the folder. You should now see that a normal user can cd to folder3, and access it's contents, but can not read the contents of folder1 and folder 2. See the block below for an example of the results.

Alternatively, you can use a tool such as SELinux to provide user based MAC, Mandatory, Access, Control, but that gets into a very advanced topic. I mention it only because as you search for solutions you will likely come across it and while it is a solution, it is one that is not necessary for your situation.

Are you talking about network shares, or users on a Linux system? By folders I assume you mean directories.

For users on a Linux system, if you want finer control over access, look at using ACLs. The filesystem needs to support ACLs, which means a Linux based filesystem.

If you are talking about network shares, please provide details on whether you are using Samba or NFS.

You could also provide more details on the directories. You're example shows relative directories.
Are they /home/folder1/folder2/folder3 or /home/user/folder1/folder2/folder3?

Also look at the sticky bit. It is used for world writable directories, which folder1 might be. It prevents a user from deleting another user's file when both users have write access on the directory.

I have Debian 6 and samba share, with groups.
One existing user like "user7" needs to have write access to foder3 on shares/folder1/folder2/folder3
At the moment all the folders have group1 full access, the owner is "user7", others have read access.
I need to manage how to give acces for "user7" with write permission to one of the subfolder "folder3"!???
I am newbie in linux.