9 More Discussions You Might Find Interesting
1. AIX
Hi,
I need to grant read permission to a normal user on sulog file on AIX 6.1.
As root I did acledit sulog and aclget shows "extended permissions" as "enabled" and normal user "splunk" has read permissions. When I try to access sulog as splunk user it won't allow and aclget for splunk user... (6 Replies)
Discussion started by: prvnrk
6 Replies
2. Red Hat
I work on a distribution application on Linux which generates bulk reference data extract feeds and stores them on a Linux server. I have several consumer applications access the files stored on this Linux server using FTPS protocol. However in order for consumer applications to have access to... (2 Replies)
Discussion started by: waavman
2 Replies
3. Red Hat
Hello experts,
I would like to know if is possible to create a default acl rule to a directory.
in this directory all files created should have executable permissions by the group IT.
i tried setfacl -m d:g:it:rwx /files
tried to change the mask setfacl -m m::rwx /files
but i still... (3 Replies)
Discussion started by: berveglieri
3 Replies
4. UNIX for Advanced & Expert Users
Hi everybody
As the title says I wonder if the usual (in my case Ubuntu 14.04 LTS) linux installation root does in fact uses any of the ACLs possible extensions in any of its files/dirs
I ask this because I usually use tar to backup the entire root (in offline) with a command like this (root... (2 Replies)
Discussion started by: man-walking
2 Replies
5. Solaris
Hi,
Does anyone know a way of making vim preserve ZFS NFSv4 ACLS?
Without disabling file backups in vim that is.
Thanks in advanced. (10 Replies)
Discussion started by: akame
10 Replies
6. Red Hat
Afternoon all,
This should be a simple task.
I have set up default acls on a directory to allow user user1 to read it. This directory is owned by root:root.
setfacl -d -m u:user1:rx /directory
I also did via the group.
This works fine, new files made by root are readable.
... (4 Replies)
Discussion started by: snoop6060
4 Replies
7. IP Networking
Hello,
I have a pretty useless satellite link at home (far from any civilization), so I wanted to set up caching in order to speed things up. My Squid 2.6 runs "3128 transparent" and is set up quite well on a separate machine.
I also have my dd-wrt router to move all port 80 traffic through... (0 Replies)
Discussion started by: theWojtek
0 Replies
8. UNIX for Advanced & Expert Users
Hello,
I have a directory and a list of files in it on which I'd like to set ACLs and quota.
To set ACLs regarding the UGO rights set at the moment, I haven't found any other way than grabbing the UGO rights set on the file with a shell cut command and then applying setfacl commands to that... (2 Replies)
Discussion started by: davchris
2 Replies
9. UNIX for Dummies Questions & Answers
Hi Guys
I have a squid proxy server.
I have some settings in the no proxy for exclusions on 700 client machines using firefox. I need to add to this exclusion but instead of changing 700 machines settings, is there anyway you can allow the squid server to handle this. I have gone into the... (1 Reply)
Discussion started by: beardiebeardie
1 Replies
ext_file_userip_acl(8) System Manager's Manual ext_file_userip_acl(8)
NAME
ext_file_userip_acl - Restrict users to certain IP addresses, using a text file backend.
Version 1.0
SYNOPSIS
ext_file_userip_acl [-dh] [-f file name ]
DESCRIPTION
ext_file_userip_acl is an installed binary. An external helper for the Squid external acl scheme.
It works by reading a pair composed by an IP address and an username on STDIN and matching it against a configuration file.
OPTIONS
-d Write debug info to stderr.
-f file Configuration file to load.
-h Display the binary help and command line syntax info using stderr.
CONFIGURATION
The squid.conf configuration for the external ACL should be:
external_acl_type type-name %SRC %LOGIN /path/to/ext_file_userip_acl -f /path/to/config.file
If the helper program finds a matching username/ip in the configuration file, it returns OK , otherwise it returns ERR .
The configuration file format is as follows:
ip_addr[/netmask] username|@group|ALL|NONE
Where ip_addr is a dotted quad format IP address, the netmask must be in dotted quad format too.
When the second parameter is prefixed with an @ , the program will lookup the /etc/group file entry for the specified username.
There are other two directives, ALL and NONE , which mean
AUTHOR
This program was written by Rodrigo Campos <rodrigo@geekbunker.org>
This manual was written by Rodrigo Campos <rodrigo@geekbunker.org> Amos Jeffries <amosjeffries@squid-cache.org>
COPYRIGHT
This program and documentation is copyright to the authors named above.
Distributed under the GNU General Public License (GNU GPL) version 2 or later (GPLv2+).
QUESTIONS
Questions on the usage of this program can be sent to the Squid Users mailing list <squid-users@squid-cache.org>
REPORTING BUGS
Bug reports need to be made in English. See http://wiki.squid-cache.org/SquidFaq/BugReporting for details of what you need to include with
your bug report.
Report bugs or bug fixes using http://bugs.squid-cache.org/
Report serious security bugs to Squid Bugs <squid-bugs@squid-cache.org>
Report ideas for new improvements to the Squid Developers mailing list <squid-dev@squid-cache.org>
SEE ALSO
squid(8), GPL(7),
The Squid FAQ wiki http://wiki.squid-cache.org/SquidFaq
The Squid Configuration Manual http://www.squid-cache.org/Doc/config/
ext_file_userip_acl(8)
04-23-2011
