On Mon, Apr 11, 2016 at 5:06 PM, Dave Howorth
On Mon, 2016-04-11 at 16:42 -0400, Greg Freemyer wrote:
Lots of conversation of giving people selective admin roles and no mention of ACLs?
ACLs can be used to override the basic Linux permissions and maybe the above desire of Xen?
So if a single user needs to have expanded permissions you can use ACLs to give them to them.
Also, ACLs have default inherit features, so you can set a directory to cause new folders / files created within it to inherit the ACLs.
So if you want to give a user rw permission to the /etc/postfix folder, just add an override ACL for him to the folder.
I wrote an article on the old opensuse wiki (old-en.opensuse.org) on using ACLs to allow a sales team (group) and a finance team (group) to share a folder and have newly created files in the folder inherit the default ACL setup.
Unfortunately, I don't know how to find that old wiki page and I don't think it was migrated to the new wiki (en.opensuse.org). I don't have that many edits on the old wiki, so if someone knows how to get a list of them, it shouldn't be hard to find that page again.
? https://old-en.opensuse.org/How_to_share_directories_between_groups_of_users... ?
Perfect. Thanks, I didn't realize that page is from 2007 (9 years old!). It doesn't do exactly what I recalled, but it is still a decent intro to how ACLs can be used to give the "management" team access to 2 other groups files without giving management full root access. Greg -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org