On Tue, Sep 12, 2000 at 11:00:49AM -0500, Jonathan Wilson wrote:
| Ok, here's the thing: all the users on my server have "cscadmin" as one of
| their "supplementary group"s (their main group is "users"). We've decided
| to put all web site document roots in /Webhomes like /Webhome/Mysite
| /Webhome/Somesite.
|
| The thing is, how can I force any files that are made in that directory to
| belong to the cscadmin group? because I'm *afraid* that when users create
| new files, they'll default to group "users" instead (Not that that's a an
| enormous problem).
|
| I thought about chmod 3754'ing the whole dir, but will that really do what
| I want?
1: You want 2775 (I don't know what you think 3754 will do).
That's:
setgid new files/dirs will inherit the group ownership
from the directory in which they're made
owner rwx of course
group rwx so people in the group have full access
other rx presuming this is public data
2: your users, when working in these areas, to be using a umask which doesn't
turn off group read (and probably not group write either), so a umask
of 002 or 007 perhaps
I'm hoping to move out staff here to a 007 umask globally this year,
which entails making sure they each have a personal group (that way in
their home directories a 007 umask is equivalent to 077, thus
preserving their privacy which automatically doing the right thing in
shared areas, which will be set up like your web areas want to be. Not
a trivial change here, unfortunately. Lots of historical bad practice
to fix...
Does that make things any clearer?
--
Cameron Simpson, DoD#743 [EMAIL PROTECTED] http://www.zip.com.au/~cs/
The more I ride the more I notice and the more fearful I become
- somebody on rec.moto
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
