# we have two users, marla and tyler: /etc/passwd marla:x:1006:1006:Marla Singer,,,:/home/marla:/bin/bash tyler:x:1007:1007:Tyler Durden,,,:/home/tyler:/bin/bash
# they're default group is coresponding to their username, furthermore they # are both member of the group slide /etc/group slide:x:183:marla,tyler marla:x:1006: tyler:x:1007: # and here we go... [EMAIL PROTECTED]:/ # mkdir folder [EMAIL PROTECTED]:/ # ls -lah | grep folder drwxr-xr-x 2 root root 4.0K Jul 22 12:41 folder [EMAIL PROTECTED]:/ # chgrp slide folder [EMAIL PROTECTED]:/ # chmod -R 0774 folder [EMAIL PROTECTED]:/ # cd folder [EMAIL PROTECTED]:/folder # touch still.default.umask.022 [EMAIL PROTECTED]:/folder # ls -lah total 8.0K drwxrwxr-- 2 root slide 4.0K Jul 22 12:45 . drwxr-xr-x 25 root root 4.0K Jul 22 12:41 .. -rw-r--r-- 1 root root 0 Jul 22 12:45 still.default.umask.022 [EMAIL PROTECTED]:/folder # umask 002 [EMAIL PROTECTED]:/folder # touch now.umask.002 [EMAIL PROTECTED]:/folder # ls -lah total 8.0K drwxrwxr-- 2 root slide 4.0K Jul 22 12:46 . drwxr-xr-x 25 root root 4.0K Jul 22 12:41 .. -rw-rw-r-- 1 root root 0 Jul 22 12:46 now.umask.002 -rw-r--r-- 1 root root 0 Jul 22 12:45 still.default.umask.022 [EMAIL PROTECTED]:/folder # su marla [EMAIL PROTECTED]:/folder$ id uid=1006(marla) gid=1006(marla) groups=183(slide),1006(marla) [EMAIL PROTECTED]:/folder$ mkdir ballcancer [EMAIL PROTECTED]:/folder$ ls -lah total 12K drwxrwxr-- 3 root slide 4.0K Jul 22 12:47 . drwxr-xr-x 25 root root 4.0K Jul 22 12:41 .. drwxrwxr-x 2 marla marla 4.0K Jul 22 12:47 ballcancer -rw-rw-r-- 1 root root 0 Jul 22 12:46 now.umask.002 -rw-r--r-- 1 root root 0 Jul 22 12:45 still.default.umask.022 # bingo! # [EMAIL PROTECTED]:/ # chmod -R 6774 folder # would have set the folder sticky # then the just created directory ballcancer would look like this: # drwsrwsr-x 2 marla slide 4.0K Jul 22 12:47 ballcancer # -and thus would be writable by tyler, but: # drwxrwxr-x 2 marla marla 4.0K Jul 22 12:47 ballcancer # is just the premission/group setting you're looking for... [EMAIL PROTECTED]:/folder$ echo "you're a monster" >> ballcancer/textfile [EMAIL PROTECTED]:/folder$ exit exit [EMAIL PROTECTED]:/folder # su tyler [EMAIL PROTECTED]:/folder$ id uid=1007(tyler) gid=1007(tyler) groups=183(slide),1007(tyler) [EMAIL PROTECTED]:/folder$ cd ballcancer/ [EMAIL PROTECTED]:/folder/ballcancer$ cat textfile you're a monster [EMAIL PROTECTED]:/folder/ballcancer$ echo "ymmaavstiml" >> cognition bash: cognition: Permission denied # (I gues) this is it... # Hope I've conjured a smile on your face ;) # Marco Weber # PS: I'm canceling debian-user-ml membership for [EMAIL PROTECTED] # PPS: I'm now known as [EMAIL PROTECTED] - cu around... -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
