From owner-freebsd-questions@FreeBSD.ORG Mon May 26 16:54:09 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B10F1106568C for ; Mon, 26 May 2008 16:54:09 +0000 (UTC) (envelope-from infofarmer@FreeBSD.org) Received: from heka.cenkes.org (heka.cenkes.org [208.79.80.110]) by mx1.freebsd.org (Postfix) with ESMTP id 867228FC22 for ; Mon, 26 May 2008 16:54:09 +0000 (UTC) (envelope-from infofarmer@FreeBSD.org) Received: from amilo.cenkes.org (ppp85-140-151-10.pppoe.mtu-net.ru [85.140.151.10]) (Authenticated sender: sat) by heka.cenkes.org (Postfix) with ESMTPSA id 117F4242F843; Mon, 26 May 2008 20:54:07 +0400 (MSD) Date: Mon, 26 May 2008 20:54:05 +0400 From: Andrew Pantyukhin To: Chuck Swiger Message-ID: <20080526165403.GT92161@amilo.cenkes.org> References: <2EEC06F1F9B24B31B15CE1DCD095A7C1@GRANT> <369C3C67-9A6F-419A-AA25-FA62D8FD3425@mac.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <369C3C67-9A6F-419A-AA25-FA62D8FD3425@mac.com> X-OS: FreeBSD 8.0-CURRENT amd64 User-Agent: Mutt/1.5.17 (2007-11-01) Cc: Grant Peel , freebsd-questions@freebsd.org Subject: Re: Required Directories X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: infofarmer@FreeBSD.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 May 2008 16:54:09 -0000 On Mon, May 26, 2008 at 09:03:29AM -0700, Chuck Swiger wrote: > On May 26, 2008, at 7:30 AM, Grant Peel wrote: >> I have several servers that the users home directories contain directories >> that must exists in order for apache and mail to work correctly. >> [ ... ] >> Is there a way (by using either proftpd, or setting sticky bit, or setting >> the uimmutable flag), that I can prevent the users from deleting these >> directories, and still retain the ability for my (root run) scripts to >> have the ability to delete them? In the hosting environment I manage, I use UFS flags extensively. Checkout chflags(1) manpage, schg and sunlnk flags in particular. > It's generally not expected that users would not own the stuff > under their homedir, or would not be able to delete their files > if they want to, even if doing so would break something. > Normally, sysadmins code their scripts to re-create any missing > directory hierarchy if needed, so that if a user manages to > shoot themselves in the foot, the cron jobs will be able to > provide first aid. I don't know what kind of sysadmins you're talking about, but, say, if a hoster did not support files with non-ascii names, but let me upload them and then just remove them automatically, I would not be happy. Preventive policies work better for me.