Hello All,
i noticed that with ACLs(at least on linux), you can
add as many ACEs as you want, but it only considers
the primary group of the user. Is it possible to have
a setup wherein the *other* group memberships of the
user is checked as well?
e.g.
user1
primary group = apples
other group memberships = oranges, grapes
Given a folder that is configured such that only
members of group oranges has access to it, can user1
be granted access to it *without* changing user1's gid
to oranges, and without adding an ACE specifically
granting access to apples members?
yes.
one example:
mkdir xfldr <-- folder created owned by 'edel', group 'edel'
getfacl xfldr <-- query default acl
(output of getfacl)
# file: xfldr
# owner: edel
# group: edel
user::rwx
group::r-x
other::r-x
setfacl -m u:tikla:wrx xfldr <-- set acl for user tikla on folder 'xfldr' with permission 'wrx'
getfacl xfldr <-- query new acl
# file: xfldr
# owner: edel
# group: edel
user::rwx
user:tikla:rwx <-- user tikla with rwx permission
group::r-x
mask::rwx
other::r-x
you can also do this with group permission. hth.
--edel
_________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
