Ubuntu :: Advanced - IT Groups Can Read / Write Files But Others Have No Permissions
Jan 28, 2011
I have a file server running 10.04. I have a user that belongs to 2 groups (users is the primary and IT is the secondary). I have permissions set up so that this user and other users that belong to the IT groups can read/write files and others have no permissions whatsoever. I have also set the umask to 0007 so that any files created have the effective permissions. My concern is this: since my primary group is users, is it possible for me to create files with the owner group IT for only this specific folder?
I am running Karmic x64 on a HP laptop that has a cd/dvd burner. I have a r/w cd with files on it and I wish to add/remove files to it. After it mounts automatically on insertion, I unmount it and remount with: sudo mount /dev/sr0 -t iso9660 -w /media/cdrom (I tried assorted other hare-brained things also) but it always says that the filesystem is read only. Do I need to use a different device than sr0? Is it even possible under Ubuntu?
i have setup a samba server and created samba shares on it, i have configured the samba server to authenticates users from a windows server 2003 DC,
i have 2 shares call IT and MYSHARE, I want to give read and write permissions to sevaral users to those two shares and read only permisson to all the other users.
i tried editing the smb.conf file with the following settings , but no one can write or modify the files in the shares including the users specified in the write list = cweerasinghe,njayarathna.
[IT] writeable = Yes browseable = yes public = no comment = IT share
[Code]....
how can i give access to the write list = cweerasinghe,njayarathna users to read, write and modify the files in the shares ??
I have apache2 running on my computer. I want to change the permissions for /var/www/ so that I can edit the files without a problem. Right now I can use the gksudo command, but I'd like to be able to have all the files available when using an IDE like eclipse. I've read in several places that Code: chmod 755 /var/www will do, but if I'm not mistaken that would give read/write access to anyone. I'm not in a production environment, so I'm not too worried about security, but I'd like to give anyone else as less permissions as possible. Would this be possible?
Just finished downloading a game in .run format, i downloaded it to my Home>Downloads folder and ran these commands in terminal: (game is tremulous if it matters)
chmod +x tremulous.run ./tremulous.run
It started it up in the terminal and i began working my way through the installation process, and i tried to install it into my Home>Games folder. (Is it supposed to be home>games or your username>games?)
and it said PERMISSION DENIED. No write permission to Home/Games/
How do i give myself read and write permissions to my game folder?
I have created directories in root. I am looking for the chmod command to allow all users read and write permissions to a specific directory. I have done chmod 775 for a file but I need this for a directory. This includes permissions on all files and sub directories.
What I want to be able to do, is have create a group, for example called "group1" and set its default permissions to read & write, instead of the usual just read.
So when I add a user into "group1" they automatically have read & write access to all files & directories which is in "group1".
Oh & I use crunchbang 10 (statler) for my desktops & Ubuntu 11.04 for my NFS/print/SSH/etc/etc server
I am setting up a samba server to operate in a windows AD domain. I want to set permissions for multiple groups to have different levels of access to one group of files, and it looks to me like unix permissions will not do that? I always hear about how robust linux is, and it seems to me that their file permissions model is WEAK compared to microsoft's?
I own a particular file on a Linux system. I would like to give 2 groups (accounting, shipping) read access and only read access, and 3 users(Mike, Raj and Wally) write access and only write access. How can I accomplish this?
I have 4 machines; all multiboot. I want each machine to have full rw access to file shares on each other machine, AND, full rw access to the other partitions on the same machine home folder for UNbooted OS's. I imagine Samba will NOT handle all these configurations? What else do I have to do, so that, for example, if I have 2 machines on, and I boot up a third machine in another room, it will auto mount the other 2 machines' shares, and it export it's own shares to the other 2 machines? I want also each machine to have full rw access to shares on the UNbooted partitions of each machine.
I'm new to debian ,I was trying to mount my NTFS partition but I did that only with read permissions I couldn't install ntfs-config(allthough I have ntfs-3g installed).So I want to figure out how to mount my partitions with read/write permissions automatically as the systeme starts ?
I want to simply mount an ext4 file-system onto a normal mount point in Ubuntu (/media/whereever), as read-writable for the current logged-in user, i.e. me.
I don't want to add anything into /etc/fstab, I just want to do it now, manually. I need super-user privileges to mount a device, but then only root can read-write that mount. I've tried various of the mount options, added it into fstab, but with no luck.
i borrowed an external hard drive from my friend to back up a load of stuff on my windows partition before reinstalling it. I am doing this through ubuntu. I am trying to zip up folders like My Documents etc and chuck them on the external hard drive but it always comes up with errors to do with read/write permissions. In the permissions tab on the folder properties of the ext hard drive it says I am owner but i have no file access (only folder access is create and delete files). When i try to give myself read/write permission it just goes straight back to nothing when i look at it again.
I have Fedora 8 and we just switched over from a Windows "File Server" to Windows Server 2008 (10.1.1.17). I updated my fstab file and now when I go onto the Windows folders, I can list and read files, even save them, but new files are always read only.
fstab file (some, without the asterisks): //10.1.1.17/USERS/Jeff/fs /home/mriuser/Desktop/fs cifs rw,username=jsadino,password=**** 0 0
I've tried ntfs-3g, auto, ntfs, smb, some umask combinations, changing ownerships, changing permissions, everything I could think of, but still can't modify new files.
[root@localhost tmp10]# mkdir tmp2 [root@localhost tmp10]# cd tmp2 [root@localhost tmp2]# touch tmp [root@localhost tmp2]# ls -l
I got Whonix set up, and everything in place to be running correctly and I was on cloud nine. The only problem I'm having is that whenever I try to go in and change my index.html files in /var/www/, or really do anything (add new file/folder, save or delete a file) I get the message that I don't have the right permission to do anything other than open and close the folders and files.
I've extracted a few files through the archive manager through Ark (as well as through the command line) and some folders/files that were originally in Japanese are not properly displayed in the terminal or file browser. I can't delete them nor open them; I am informed that this file does not exist.I am running Kubuntu 11.04. I had a similar problem in Ubuntu 10.04 in that the text was not displayed properly, but the files were readable and writable.
I had to reinstall Ubuntu (Natty) on a brand new computer and while installing I setup the datas partition to be mounted in /usr but now I can't have access to files I put in there even if I setup the group/user permission! I can accezz /usr/Music but all files are locked
I have a Samba server running in my Lan (mainly for file and print service). This server will act as a PDC (don't ask why...). I have a question: Under a share I can use the "read list" and "write list" options with groups (eg @users). Is that group a Linux or Samba group? If it's the later, am I forced to use the net groupmap command, or it is sufficient to have a group name in the /etc/group file? Should I add samba/linux users to that group (with net rpc) or is sufficient to have the group membership set in the linux?
Something has changed all my file permissions to read only and when I try and change them back it wont let me. Is there something I can do i Nautilus to correct it?
It even effects the waste basket-all the stuff in there is now read only and when I delete items I get a file operations window, which comes and then goes like its deleted them, but they re still in the waste basket, doesnt show an error message like it does if I try and move any other file.
Write a short script that tells you whether the permissions for two files, whose names are given as arguments to the script, are identical. If the permissions for the two files are identical, output the common permission field. Otherwise, output each filename followed by its permission field
On an Apache2 server someone else setup, I have a folder with drwx--x--x permission and the php file can still write in the folder. But on my own setup, I need to set the same folder to drwx--x-wx. Inside the folder, I have a index.php that runs just by setting rwx--x--x but on my own setup, I need to allow read permission for others/group before it can run: rwxr-xr-x (or else I get a blank page). I tried changing the folder and files to root but it's the same.
I am trying to setup my webserver and I am trying to make a website to run under suexec but somehow I cannot start my apache it directly fails and SELinux is giving me errors and don't really know what to do with it, it is giving me some command to type but not sure if this will make my server less secure. The SELinux error is as follow:
Code: Summary: SELinux prevented httpd reading and writing access to http files.
Detailed Description: SELinux prevented httpd reading and writing access to http files. Ordinarily httpd is allowed full access to all files labeled with http file context. This machine has a tightened security policy with the httpd_unified turned off, this requires explicit labeling of all files. If a file is a cgi script it needs to be labeled with httpd_TYPE_script_exec_t in order to be executed. If it is read-only content, it needs to be labeled httpd_TYPE_content_t, it is writable content. it needs to be labeled httpd_TYPE_script_rw_t or httpd_TYPE_script_ra_t. You can use the chcon command to change these contexts. Please refer to the man page "man httpd_selinux" or FAQ [URL] "TYPE" refers to one of "sys", "user" or "staff" or potentially other script types.
Allowing Access: Changing the "httpd_unified" boolean to true will allow this access: "setsebool -P httpd_unified=1"
Fix Command: setsebool -P httpd_unified=1
I will write down how I did setup my server so maybe you can see a mistake I did. First I changed my Apache httpd.conf I added the following to it: Code: NameVirtualHost 192.168.1.2:80 <VirtualHost 192.168.1.2:80> ServerName localhost DocumentRoot /var/www/html DirectoryIndex index.html index.html index.shtml index.php </VirtualHost>
Then I created the username "ulyaoth" with the group "ulyaoth" as I specified with my suexec, then I created all the directories as specified in my httpd.conf and "chown ulyaoth:ulyaoth (dirname)" them to the right group and username.
I have a FTP server (vsftpd), and would like to setup different file permissions for different groups:
-"ftpusers" group should only be able to browse and download.
-"ftpadmins" group should be able to browse, download, AND WRITE (RNFR, RNTO, MKDIR....).
Let's say my main directory is /var/ftp/docs/. It should be accessible by "ftpusers" group, but only writeable by "ftpadmins" group. Other groups or users may not access it. Which permissions and ownership should I give? My problem is that the dir can't be owned by two groups...
I'm setting up a Fedora 11 server for the company of one of my friends. So far so good. But now he has asked me to setup access restrictions to folders through samba. Now I'm quite familiar with user access policies, even though I'm quite new to the GNU/Linux world. What I want to know is : what is the best way to give and remove, on the go, rwx access for a specific user to a certain folder in a linux system? Can I create groups for each folders, whose members will have the given permissions? Or do I have to create users for each folder and add to their group the user witch i want to give privilege to?
