[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#80343: general: Lack of policy on which files should be owned by which user



On Tue, Dec 26, 2000 at 12:38:28PM +0200, Eray Ozkural (exa) wrote:
> Hamish Moffatt wrote:
> > 
> > On Tue, Dec 26, 2000 at 04:43:53AM +0200, Eray Ozkural (exa) wrote:
> > > I like using groups to give different sets of rights and I'm
> > > annoyed by Debian giving every user his own group. Is that
> > > reall necessary?
> > 
> > No, but it's a good idea. It makes it much easier to work in
> > directories shared with other users (but not all users), because
> > you don't have to keep changing your umask all the time, or
> > even worse, fixing file permissions because you (or somebody
> > else) forgot to change their umask.
> > 
> 
> I always thought it was a paranoid kind of security "feature"
> in Debian. I might be wrong of course.
> 
> How does giving every user his own group makes it easier for
> him to share files without system administrator's intervention?
> I couldn't guite get it, sorry I just woke up but I simply
> don't understand it. A small example?
> 

Other people have provided most of the really useful reasons, but
another one, which is denies access rather than providing it:

If my I want a file to be readable by everybody *except* user fred, I
can set permissions:

pde@ignuthuam:~> ls -l plot-against-fred
-rw----r--    1 pde      fred      10000 Dec 27 17:12 plot-against-fred

Of course, I need root access to do it :(

-- 

|> |= -+- |= |>
|  |-  |  |- |\

Peter Eckersley
(pde@cs.mu.oz.au)
http://www.cs.mu.oz.au/~pde
	
for techno-leftie inspiration, take a look at
http://www.computerbank.org.au/

Attachment: pgpqVEIDD8O_P.pgp
Description: PGP signature


Reply to: