Date: Tue, 20 Nov 2001 02:38:51 +0100 From: "Anthony Atkielski" <anthony@atkielski.com> To: <questions@FreeBSD.ORG> Subject: Re: Writable directory except for a given user Message-ID: <007801c17164$2010e150$0a00000a@atkielski.com> References: <15353.33437.744317.153424@guru.mired.org><20011119194626.K48577-100000@malkav.snowmoon.com> <15353.45841.476855.884298@guru.mired.org>
next in thread | previous in thread | raw e-mail | index | archive | help
For what it is worth, this is a very good illustration of the shortcomings of the very limited UNIX security model. Windows NT/2000, as well as Multics, the parent of UNIX, both allow this type of access control, as I recall. ----- Original Message ----- From: "Mike Meyer" <mwm@mired.org> To: <jaime@snowmoon.com> Cc: <questions@FreeBSD.ORG> Sent: Tuesday, November 20, 2001 02:34 Subject: Re: Writable directory except for a given user > jaime@snowmoon.com types: > > On Mon, 19 Nov 2001, Mike Meyer wrote: > > > Sure - create a group that you put all users in by default, and then > > > take blacklisted users out of it. > > I'm aware of this idea, but in my case we're talking about > > hundreds of users. Is there a way to configure adduser (or FreeBSD > > itself) to add a user to a given group by default? Other than the obvious > > /etc/adduser.* files, I mean. :) What about a method of doing this and > > taking care of all of my hundreds of users that already exist? > > Can you make that the users gid, as opposed to just being another > group? If so, script to fix /etc/master.passwd should be > straightforward. Given that you only have to do it once, ed might be > the fastest way to do it. If you need to create a group with hundreds > of users - you might want to find a different approach, like sudo for > the operations you want to allow on the directory. > > <mike > -- > Mike Meyer <mwm@mired.org> http://www.mired.org/home/mwm/ > Q: How do you make the gods laugh? A: Tell them your plans. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?007801c17164$2010e150$0a00000a>