[ale] User Private Group -- what are the benefits?
James Sumners
james.sumners at gmail.com
Mon Jun 4 11:27:52 EDT 2012
This is precisely the information I needed. There are several SGID
directories we have that rely on this functionality (an improvement
over the old configuration IMHO). What I didn't realize is that it
relied on the user's umask for setting group permissions in the SGID
directory.
Thank you.
On Mon, Jun 4, 2012 at 10:58 AM, scott mcbrien <smcbrien at gmail.com> wrote:
> Thanks to the less restrictive umask, the group permissions also
> include write. Because fred is giving that to his private group that
> no one else belongs to, it's not a big deal. But on this web docroot
> directory, when you add the SGID permission, as though by magic we
> have happiness. Now when Fred creates files (that automatically are
> chgrp'ed to web):
> -rw-rw-r-- fred web freds_web_file
>
> Other people who belong to the web group can make changes to Fred's
> files without Fred (or you) needing to re-permission files all the
> time. Add to that the fact that SGID is inheritable, and now if the
> web group decides they need sub-dir structure or whatnot, they can
> create what they need and you don't have to do jack.
--
James Sumners
http://james.roomfullofmirrors.com/
"All governments suffer a recurring problem: Power attracts
pathological personalities. It is not that power corrupts but that it
is magnetic to the corruptible. Such people have a tendency to become
drunk on violence, a condition to which they are quickly addicted."
Missionaria Protectiva, Text QIV (decto)
CH:D 59
More information about the Ale
mailing list