Try using the sticky bit, like the way the /tmp directory is set up.
Apply the stick bit to all directories, and set ownership of them to publicuser.
acl's will work but are complex as you found.
After logout and log in again, It is not possible to edit files that you don't own yourself with vi or kate.
I suppose because the effective mask is r--
Any help is welcome
---------- Post updated at 18:50 ---------- Previous update was at 18:28 ----------
I have read that it is possible to define a mask.
I have a try and give news.
---------- Post updated at 20:35 ---------- Previous update was at 18:50 ----------
Have set mask
Code:
setfacl -R -m u::rwx $A_PUB_FOLDER #//set user to rwx
setfacl -R -m g::--- $A_PUB_FOLDER #//set group to ---
setfacl -R -m o::--- $A_PUB_FOLDER #//set other to ---
setfacl -R -m g:publicuser:rwx /$A_PUB_FOLDER #//set group publicuser to rwx
# Set default
setfacl -R -d -m u::rwx $A_PUB_FOLDER #//set user rwx default
setfacl -R -d -m o::--- $A_PUB_FOLDER #//set other --- default
setfacl -R -d -m g::--- $A_PUB_FOLDER #//set group --- default
setfacl -R -d -m g:publicuser:rwx /$A_PUB_FOLDER #//set group publicuser to rwx default
# set mask
setfacl -R -m m::rwx $A_PUB_FOLDER #//set mask to rwxsetfacl -R -d m::rwx $A_PUB_FOLDER #//set mask to rwx default
#
Nothing new.
OK ==> user not in group publicuser cannot access folders owned by publicuser.
OK ==> user in group publicuser can create/edit files they owned in any folders owned by publicuser.
bad ==> A user (belonging to publicuser) in it's own folder cannot edit files created by other users (belonging to group publicuser).
bad ==> until A user (belonging to publicuser)edit bor create a file, the file mask return to r--
Hi,
I generated a script that will create the list of dir/sub-dir and will allow to create the same on diff server. this is what i have done :
#!/bin/ksh
# Script to migrate the directory between the two servers.
# Ver 0.1
# Author Krishna. D
# c - create and e - extract directory
if ;... (1 Reply)
Hi all,
I have the following code to check the whether the folder is exist in my system.
if ; then echo 'folder exist'; else echo 'folder not exist'; mkdir /home/batch/testing ; fi
When I remove the "testing" folder from "/home/batch" directory, the code is working fine. But when I... (2 Replies)
hello
i wanted to ask you
i try to setting:
pc server name: A
pc user name: B
pc user name: C
server A is opensuse 11.2 with kde 4.3.5 and last kernel
so i create NFS server, i think.. folder (/usr is all softwares and library) because
server A can share to PC A.
because all... (0 Replies)
Hi All
Everytime a reboot my machine "hostB" I have to mount a shared (with machine "hostA" ) NFS folder giving this command
sudo mount hostA:/sharedFolder /sharedFolder
How to use fstab in order to do this automatically?
I should say
hostA:/sharedFolder /sharedFolder ... (0 Replies)
Hi,
In our bank production environment - IBM AIX 5.3, we have a particular parent folder inside which an application creates temporary folders & files. These temp folders exist for the lifetime of the user session within the application and then get deleted automatically.
Since these temp... (1 Reply)
Hello,
I am using unix through cygwin application in my office machine and here i encounter a problem which i want copy certain big files from a shared folder
shared folder--\\Parwvm000154\docs
to my local machine c:/
I'm really honor if i clarified with the command.
Regards... (1 Reply)
I'm trying to set up a folder in my home directory that will be shared with another user but for some reason it is not working this is what I've done, I have tried two different ways using ACL's and chown/chgrp etc
I set up a group called say: sharedgroup and added both my user (john) and fred... (3 Replies)
Hello, I have a question regarding ACLs and their availability across different Unix platforms via NFS share.
If I have an AIX/FreeBSD/Solaris/HP-UX client that has an nfs share from a different system mounted on it, will the ACLs on the nfs share be processed properly?
My guess is that as... (2 Replies)