Go Back   The UNIX and Linux Forums > Top Forums > Shell Programming and Scripting
Reload this Page Hiding Directories on a Session by Session basis
.
google site

Forums Register Blog Man Pages Forum RulesLinksAlbums FAQ Users Calendar Search Today's Posts Mark Forums Read



Thread: Hiding Directories on a Session by Session basis
View Single Post in the UNIX and Linux Forums - Click on the Thread or Permalink to View Entire Thread -->
  #3 (permalink)  
Old 11-26-2008
en7smb en7smb is offline
Registered User
  

Join Date: May 2007
Posts: 6
Quote:
Originally Posted by jim mcnamara View Post
Deny execute access to users in group DeptA on /filesystem1, grant execute access to DeptB on /filesystem1.

Have no world (or other) access on /filesystem1. Put all of DeptA into a single group, put all of DeptB into a separate group.

If your filesystems support acl's you can block access using acl's on a per user basis if you want. You only need to block access department-wide at one point -one directory - then all subsequent directories become unreachable. See man chacl
Jim,

Thanks for the reply.

However, is this giving rise to the dynamic permissions required? IE userA starts a session while physically sitting in deptA (which the software knows and passes to the .sh file) and can see deptA filesystem. Then same userA walks down the corridor to deptB and starts a session, and this time shouldn't be able to see deptA filesystem.

Is chroot a possible solution to this? Only just found it, so just looking over its potential now.

Thanks,

Steve