Hi Willie,
Many thanks for your informative reply.
On 30 Sep 2008, at 15:18, Willie Wong wrote:
On Tue, Sep 30, 2008 at 03:05:58AM +0100, Penguin Lover Stroller
squawked:
I'm a little unclear as to how these permissions have been applied -
shouldn't it be based either on the permissions of the mount-point
directory, or added as an "-o users,umask=000" in /etc/fstab ?
umask only applies to file systems with no intrinsic permission
settings, e.g. VFAT. The permissions for file systems with permission
bits are set in the file system itself ... chmod/chown/chgrp applied
to the mount point after
mounting will change the permissions of the actual file system.
Of course! It would not have occurred to me to ask this question were
I mounting a drive at a normal place in the Unix directory tree (by
which I mean /bin, /boot, /etc, /home, /lib, /sbin, /usr, /var and
directories below them).
However I'm posting to solicit suggestions on the best permissions
practices for this purpose. mediatomb shouldn't need write access
to these
files or folders at all - there's no option on the UPnP client, for
instance, to delete files from the server. Should I make the drives
owned
by "users" and in the "mediatomb" group, with read-only access for
the
latter? Any other suggestions?
What's so secret in your media folders that you can't just give read
access to mediatomb? Why don't you have it like you have now with
regards tot he owner and group and just give read permission to other?
owner root
group users
umask 002 (i.e. you will have rwxrwxr-x or rw-rw-r-- ?)
Of course! That's perfect. And I can easily keep customer data and
other stuff on the drive at umask 007.
To do any fancier (say, files owned by root, read-write access for all
users and read access only for mediatomb and no access for everyone
else) you will probably need a real ACL with which I can offer no
suggestions.
No, that's not necessary at all. I must've been having a brain-fart
even to have asked.
Stroller.
