Re: UPG and the default umask

To: debian-devel@lists.debian.org
Subject: Re: UPG and the default umask
From: Stanislav Maslovski <stanislav.maslovski@gmail.com>
Date: Thu, 20 May 2010 03:24:10 +0400
Message-id: <[🔎] 20100519232410.GA32070@kaiba.homelan>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] ldd.1005170400.1827@thorondor.akallabeth.de>
References: <[🔎] 20100510162317.GI2652@radis.liafa.jussieu.fr> <[🔎] 87fx1ykjrt.fsf@windlord.stanford.edu> <[🔎] hsn1gf$cst$1@dough.gmane.org> <[🔎] 87eihcc0hq.fsf@windlord.stanford.edu> <[🔎] 20100516151155.GB5246@yuggoth.org> <[🔎] 20100516205051.GC4216@sbs288.lan> <[🔎] hspqv6$qie$1@dough.gmane.org> <[🔎] 87iq6ne7lm.fsf@windlord.stanford.edu> <[🔎] hsq23k$br8$1@dough.gmane.org> <[🔎] ldd.1005170400.1827@thorondor.akallabeth.de>

On Mon, May 17, 2010 at 04:00:57AM +0200, Thomas Hochstein wrote:
> Felipe Sateler schrieb:
> 
> > I mean, is there a reason for why I would want a non-UPG system?
> 
> What about a hosting environment where you need to have user files
> world-readable (HTML documents or (PHP) scripts readable by www-data),
> but don't want them readable by other customers? You could achieve
> that by putting all customers in a common group ("users") and setting
> the files 604 or the like.

I think that in a UPG environment you could achieve the same (at least
in the case when there is a certain directory in which all those users
create their files, like /var/www/ or something) with a combination of
a common group, umask 072, and a setgid bit (and most likely a sticky
bit too to prevent deletions) on the shared directory.

-- 
Stanislav

Reply to:

References:
- Re: UPG and the default umask
  - From: Julien Cristau <jcristau@debian.org>
- Re: UPG and the default umask
  - From: Russ Allbery <rra@debian.org>
- Re: UPG and the default umask
  - From: Willi Mann <foss-ml@wm1.at>
- Re: UPG and the default umask
  - From: Russ Allbery <rra@debian.org>
- Re: UPG and the default umask
  - From: The Fungi <fungi@yuggoth.org>
- Re: UPG and the default umask
  - From: Harald Braumann <harry@unheit.net>
- Re: UPG and the default umask
  - From: Felipe Sateler <fsateler@gmail.com>
- Re: UPG and the default umask
  - From: Russ Allbery <rra@debian.org>
- Re: UPG and the default umask
  - From: Felipe Sateler <fsateler@gmail.com>
- Re: UPG and the default umask
  - From: Thomas Hochstein <thh@inter.net>

Prev by Date: Bug#582321: TAG: dirsum -- commandline directory summary
Next by Date: Re: snapshot.debian.org implications for you
Previous by thread: Re: UPG and the default umask
Next by thread: Re: UPG and the default umask
Index(es):
- Date
- Thread