RE: [SLE] complex acl (in my opinion anyway...) question
From: Heupink, Mourik Jan C. (Heupink_at_INTECH.UNU.EDU)
To: Date: Wed, 12 Jan 2005 12:02:12 +0100
i really don't think I understand this 'simple' solution... :(
how can you configure directories on a server to be invisible to users..?
what I want is to prevent users from doing like cd /etc
only directories that should work would then be cd /home and all other
directories would give "access denied" or so. (or would be invisible as you
say, even nicer!)
But how to do this..?
> -----Original Message-----
> From: Andrew Brown [mailto:email@example.com]
> Sent: 10 January 2005 21:30
> To: Heupink, Mourik Jan C.
> Cc: firstname.lastname@example.org
> Subject: Re: [SLE] complex acl (in my opinion anyway...) question
> > Is there a way, using posix acl I guess, to DENY access to all
> > directories, except a few?
> > So, maybe create a group (mortal_users..?) and put a deny
> acl to all
> > directories, except /home.
> Do you even need to be fancy if all the directories are
> configured to be invisible/inaccessible outside the group and
> owner? Surely it is then enough to make the outside users
> belong to a different group?
> > ---
> > email: echo ude.unu.hcetni@knipueh | rev
> > --
> > Check the headers for your unsubscription address
> > For additional commands send e-mail to
> email@example.com Also
> > check the archives at http://lists.suse.com Please read the FAQs:
> > firstname.lastname@example.org
> Andrew Brown
> What I do: www.darwinwars.com
> What I'm up to: www.thewormbook.com/helmintholog/
-- Check the headers for your unsubscription address For additional commands send e-mail to email@example.com Also check the archives at http://lists.suse.com Please read the FAQs: firstname.lastname@example.org