I was wondering something similar myself. But, sadly, groups don't cascade or anything, so you can not do something like
all_hardware_group:x:user1 just_cdrom_group:x:user2 and find any sort of perms on /dev/cdrom (or your local equivalent) that will let that work. Of course, on my single user machine, the hardware group plan will work fine. -----Original Message----- From: Dan Jacobson [mailto:[EMAIL PROTECTED]] Sent: Sunday, January 12, 2003 1:01 AM To: [EMAIL PROTECTED] Subject: do I really need to be in all those /etc/groups? Just look at me, $ id uid=1000(jidanni) gid=1000(jidanni) groups=1000(jidanni),20(dialout),24(cdrom),29(audio),1004(scanner) My latest addgroup was disk, so I wouldn't get error messages when eject(1)ing USBs. However $ find /dev |wc -l 5142 $ find /dev -group disk -perm -20|wc -l 4006 that gives me write permission to most of /dev. By the way, those error messages were eject: unable to open `/dev/sda1' #if my id(1) is not in the group "disk", or eject: unable to eject, last error: Invalid argument #if it is. Either way, it still does its job. One has to be root to not get the annoying messages. System is debian 2.4.19-k7. Another item is I can switch groups with ease, $ newgrp disk $ newgrp dialout $ newgrp jidanni Password: ****** Sorry. Except for my own group, which fails when I give my login passwd... Maybe I didn't read the manual. But more exciting is when run in a emacs *shell* window, $ newgrp disk Segmentation fault $ newgrp dialout Segmentation fault $ newgrp jidanni Password: ****** Sorry. $ newgrp audio Segmentation fault $ reportbug -f newgrp P.S. even after doing # deluser user group #(PPS: can use addgroup this way but not delgroup!) the processes still have those privileges until they die. But I guess that is how the system is designed. -- http://jidanni.org/ Taiwan(04)25854780 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] ------------------------------------------------------------------------------ This message is intended only for the personal and confidential use of the designated recipient(s) named above. If you are not the intended recipient of this message you are hereby notified that any review, dissemination, distribution or copying of this message is strictly prohibited. This communication is for information purposes only and should not be regarded as an offer to sell or as a solicitation of an offer to buy any financial product, an official confirmation of any transaction, or as an official statement of Lehman Brothers. Email transmission cannot be guaranteed to be secure or error-free. Therefore, we do not represent that this information is complete or accurate and it should not be relied upon as such. All information is subject to change without notice. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
