Mailing List Archive
Support open source code!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: tlug: Why group-per-user? [was: ""]
- To: tlug@example.com
- Subject: Re: tlug: Why group-per-user? [was: ""]
- From: Stephen Turnbull <turnbull@example.com>
- Date: Sun, 17 Oct 1999 01:11:03 +0900 (JST)
- Content-Transfer-Encoding: 7bit
- Content-Type: text/plain; charset=us-ascii
- In-Reply-To: <19991016073448.A11771@example.com>
- References: <14342.50473.344831.18613@example.com><m39055yve3.fsf@example.com><14342.55171.855866.145233@example.com><19991016031114.A11396@example.com><14343.1951.612125.973182@example.com><19991016073448.A11771@example.com>
- Reply-To: tlug@example.com
- Sender: owner-tlug@example.com
>>>>> "Shimpei" == Shimpei Yamashita <shimpei@example.com> writes:
>> What!!?! You mean they're not checking them into CVS over ssh?
>> Horrors!
Shimpei> Ah, but what account are they logging into with ssh? (If
Shimpei> you answer "shared account," you die.)
Ah, that wasn't my point ;-)
It's obviously true that ACL is the right way to go for flexibility.
For the application you're talking about, I think newgrp would be
satisfactory in 99% of the cases as long as students' UMASKs were
0077. They set the group and mode on the shared directory, and give
the password to their partner. You could even be reasonably secure
(security through obscurity) with multiple partners having the
password as long as your home directory is mode 0700 and you have
separate directories (with strange names) for each buddy with mode
0770, and the relevant files are mode 0770. Of course, you want to
change the password every term ;-)
You could also have a SUID script that adds and deletes users to a
given user's personal group, but don't ask me to guarantee
correctness ;-)
Shimpei> I haven't missed ACL for the last few years, but that's
Shimpei> only because I had root on all the machines I had been
Shimpei> using.
Coda (www.coda.cs.cmu.edu) has ACLs and a lot of other neat features
for the application you are talking about it.
--
University of Tsukuba Tennodai 1-1-1 Tsukuba 305-8573 JAPAN
Institute of Policy and Planning Sciences Tel/fax: +81 (298) 53-5091
__________________________________________________________________________
__________________________________________________________________________
What are those two straight lines for? "Free software rules."
-------------------------------------------------------------------
Next Technical Meeting: October 9 (Sat), 13:30 place: Temple Univ.
* Linux Internationalisation Initiative (Li18nux) speaker: Akio Kido
* Japanese TrueType Fonts speaker: Adrian Havill
Next Technical Meeting: November 13 (Sat), 13:30 place: Temple Univ.
* Network Security speaker: Steve Baur
Next Nomikai: December 17 (Fri), 19:00 Tengu TokyoEkiMae 03-3275-3691
-------------------------------------------------------------------
more info: http://www.tlug.gr.jp Sponsor: Global Online Japan
- References:
- No Subject
- From: Viktor Pavlenko <pavlenko@example.com>
- tlug: Re: none
- From: Jens-Ulrik Petersen <jens-ulrik.petersen@example.com>
- tlug: Why group-per-user? [was: ""]
- From: "Stephen J. Turnbull" <turnbull@example.com>
- Re: tlug: Why group-per-user? [was: ""]
- From: Shimpei Yamashita <shimpei@example.com>
- Re: tlug: Why group-per-user? [was: ""]
- From: "Stephen J. Turnbull" <turnbull@example.com>
- Re: tlug: Why group-per-user? [was: ""]
- From: Shimpei Yamashita <shimpei@example.com>
- No Subject
- Prev by Date: tlug: Viewing japanese text: sometimes yes, sometimes no
- Next by Date: tlug: Oxymoron in free software development sighted!
- Prev by thread: Re: tlug: Why group-per-user? [was: ""]
- Next by thread: tlug: Re: none (Groups)
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |