extended acls vs umask

Jan Poctavek j at binaryparadise.com
Tue Feb 8 05:21:20 CET 2011

Previous message: extended acls vs umask
Next message: extended acls vs umask
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dňa 8. 2. 2011 0:16, Dan Lukes  wrote / napísal(a):
> On 02/07/11 22:50, Jan Poctavek:
>> Moja otazka je ako nastavit prava na ftp adresar (ufs), aby kazdy novo
>> vytvoreny subor v tomto adresari mal read/write pre groupu ftpdata?
>
> Pripada ti ta rada zdlouhava, komplikovana a spatne pochopitelna ? Neni
> se co divit - usetrils v dotazu jedno slovo, urcite slo o mene nez deset
> pismen - a tak jsme se nedozvedeli jaky FTP server vlastne pouzivas.

Vdaka za vysvetlenie, spominany daemon je pure-ftpd. Ale nespominal som 
ho preto, lebo uploady cez ftp su v poriadku (umask v cfg).
Pravym problemom je priamy pristup zo shellu, tzn. volania cp (prip. 
mv), ktore standardne zavisia od nastavenia umask uzivatela v shelli. 
Cely princip je, aby lokalni uzivatelia nemuseli pouzivat ftp, nakolko 
maju vsetko rovno na serveri.
A tu narazam na problem, ci je mozne nastavenim default acls pre parent 
directory obist nastavenie umask u uzivatela a nastavit rw prava pre 
groupu ftpdata (v zfs to ide cez aclinherit=passthrough, avsak nemozem 
si dovolit tam dat zfs).

Pokial by to neslo, uz ma napada len pouzit nejaky dtrace skript, ktory 
by sledoval volania open()/creat() a nasledne upravil prava.. ale to je 
zatial len vystrel do tmy.

Jan

Previous message: extended acls vs umask
Next message: extended acls vs umask
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users-l mailing list