Re: SELinux - way of the future or good idea but !!!

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On Nov 29, 2010, at 7:47 AM, Les Mikesell wrote:

> On 11/29/2010 7:35 AM, Adam Tauno Williams wrote:
>>
>> Even if it is *possible*, the traditional UNIX permissions are a  
>> serious
>> *PAIN*.  If you want two users to have rw- to a file you...  create a
>> group of two users???
>
> Yes, there is nothing simpler than a group to represent a group of  
> users.
>
>> You end up with a zillion groups - which is
>> pointless and unmaintainable.  Thank goodness for ACL support and
>> setfacl/getfacl.
>
> So what do you do when you have user-specific ACLs splattered randomly
> through the filesystem and the members of the cooperating groups  
> change?

Perhaps consult with Winblows AD admins as I'm sure they deal with  
this all the time.

MS$ ACLs have been around for a very long time.

- aurf
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux