On Fri, 14 Dec 2001 at 09:14, the Four O Clock Project wrote: > flames > /dev/null > and more flames > /dev/null
If you really wanted silence: $ flames > /dev/null 2&>/dev/null Hehehe. ;> > We administrators definitely know that Group permissions can be > controlled using /etc/groups in *nix, let us recall that groups are a > way to shorten access control lists. They are useful in other ways as > well. Group permissions are good but they have some flaws or shortcomings, at least as far as my experience is concerned: 1. User-Group-World permissions are not fine grained enough for situations where you want to allow a particular group of people to have read-only access, another group of people to have read-write access, and the rest of the world to not have access to a directory tree. You cannot use the user permissions because obviously they'll have to allow read and write access. The group permissions will only allow you to handle one group, not the read-write and read-only groups simultaneously. Then world will have to be set to deny access. 2. When you update a group to add a new user or remove an old user, the users involved will need to log out first. This is quite a hassle, compared to say, Samba (which I find handles the ACLs pretty well even when you use it for Linux-Linux file sharing), which will effect changes in its configuration as soon as its daemon is reloaded. So most unfortunately, for our "data" shares, these don't cut it. Which is one of my largest frustrations. :( > If not use sudo because > > 1) flexibility > 2) flexibility > 3) and Admin friendly Well, true, but then I will need to write scripts to change permission bits for each directory heirarchy in the "second level" (ie: if /opt is my top level, /opt/accounting-data, /opt/eng-data, et al are my second level). And when a user is the owner of a file (as is the case when one creates a file) he/she can change group ownership and permissions right? I don't want to allow that. Again with Samba I'm able to force the group and permission bits on new files set, and deny changes to these by anyone. > But ACL's are great and I know Jijo knows them by heart. I have been > informed he is one of the best in this area. So kudos to him Oh my. No, I am definitely not one of the best in this area. Perhaps I'm the noisiest and the one with the most questions out in the open, but I'm definitely not an authority. As a matter of fact I'd consider myself a black hole. :( > Hmm.. let me comment on this one, There should only be ONE God. or ONE > President of a company, ONE CEO, and ONE leader, I think you can get the > point from there. Remember heirarchy *grin* and I could feel that it > will stay that way until you reverse the thinking of the whole human > race. Well, there's the Cathedral and the Bazaar ... it's great to work with a team. I should know: for all my life I've not had one. Again another great frustration. It's hard to be a SysAd and a developer when you're "lonely" (ie: solo flight, lone ranger, et al). > Keech Angelo S. Famorca At last a full name. :) --> Jijo -- Federico Sevilla III :: [EMAIL PROTECTED] Network Administrator :: The Leather Collection, Inc. GnuPG Key: <http://jijo.leathercollection.ph/jijo.gpg> _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
