From owner-freebsd-questions@FreeBSD.ORG  Wed Mar  7 21:30:51 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id B44D116A401
	for <freebsd-questions@freebsd.org>;
	Wed,  7 Mar 2007 21:30:51 +0000 (UTC) (envelope-from cswiger@mac.com)
Received: from mail-out3.apple.com (mail-out3.apple.com [17.254.13.22])
	by mx1.freebsd.org (Postfix) with ESMTP id 9BA7713C47E
	for <freebsd-questions@freebsd.org>;
	Wed,  7 Mar 2007 21:30:51 +0000 (UTC) (envelope-from cswiger@mac.com)
Received: from relay5.apple.com (a17-128-113-35.apple.com [17.128.113.35])
	by mail-out3.apple.com (8.13.8/8.13.8) with ESMTP id l27LUpHr015956;
	Wed, 7 Mar 2007 13:30:51 -0800 (PST)
Received: from relay5.apple.com (unknown [127.0.0.1])
	by relay5.apple.com (Symantec Mail Security) with ESMTP id 50F0B29C005; 
	Wed,  7 Mar 2007 13:30:51 -0800 (PST)
X-AuditID: 11807123-9d91cbb000004462-a2-45ef2f0b89b5 
Received: from [17.214.13.96] (cswiger1.apple.com [17.214.13.96])
	(using TLSv1 with cipher AES128-SHA (128/128 bits))
	(No client certificate requested)
	by relay5.apple.com (Apple SCV relay) with ESMTP id 3C76F30400B;
	Wed,  7 Mar 2007 13:30:51 -0800 (PST)
In-Reply-To: <001401c760f9$2c48f310$dc96eed5@ihlasnetym>
References: <001401c760f9$2c48f310$dc96eed5@ihlasnetym>
Mime-Version: 1.0 (Apple Message framework v752.2)
X-Priority: 3
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
Message-Id: <F8069C1F-6635-4451-82F9-77B213FAEC7B@mac.com>
Content-Transfer-Encoding: 7bit
From: Chuck Swiger <cswiger@mac.com>
Date: Wed, 7 Mar 2007 13:30:50 -0800
To: Halid Faith <maslak@ihlas.net.tr>
X-Mailer: Apple Mail (2.752.2)
X-Brightmail-Tracker: AAAAAA==
Cc: freebsd-questions@freebsd.org
Subject: Re: About root user rights
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Mar 2007 21:30:51 -0000

On Mar 7, 2007, at 12:42 PM, Halid Faith wrote:
> I am an admin for my bsdserver. That is, I can be root user. But  
> There are 3 people who can be root user in the same server.  I have  
> a directory. I want them not to enter that directory. if it be  
> possible the server should ask one more password for that directory  
> when anyone reaches there.
> Or let another user can reache there but let "Root user" not able  
> to read there. Does it possible ?

Not easily, no-- by design, root has complete access to the system.   
If you don't trust the other users, then they simply should not have  
root access to the machine.

It's perhaps possible to create an encrypted file which you'd mount  
via "mdconfig -t vnode -f _file_" once you've supplied another  
password...

-- 
-Chuck