tags:

views:

321

answers:

3
+2  Q: 

How do you set a directory to have persistent group permissions?

We have two users:

user1 user2

They both belong to the group 'admin'.

We have a directory that has been set to 775. The directory's group has been changed to 'admin'. Each user has full access to write into that directory, though when a user writes a new file to the directory, the group permissions of the folder are not persisted to the file that was written.

How should we make it so that files inherit the directory's group permissions?

Clarification: when a new file or directory is written, it uses the users' group as the group of the new file, rather than that of the directory, which makes sense - but how do I not make that happen?

+2  A: 

I think you should look here.

As the site says, "Unix doesn't support the idea of inherited permissions."

However, there is a section on ACLs (Access Control Lists), which I think is what you are looking for. By setting up an ACL, you can have your files inherit the same ACL from the directory, which I think is what you are asking for. setfacl is the shell command that will be what you need to look into.

Hope that helps!

samoz  2009-02-09 16:57:17
+1  A: 

If you are using ext3 or ReiserFS, this page about creating a Linux file server may help. Specifically step 7 suggests the following command.

setfacl -d -m g:sales:rw /groups/sales
Mike  2009-02-09 17:00:48
+3  A: 

You can propagate group permissions by setting the directory's setgid bit (chmod g+s). This may not be portable across all *nixes and all file systems.

http://en.wikipedia.org/wiki/Setuid#setgid_on_directories

http://www.gnu.org/software/coreutils/manual/html_node/Directory-Setuid-and-Setgid.html

Cirno de Bergerac  2009-02-09 17:01:43
Perfect, thanks!
Nick Sergeant  2009-02-09 17:07:24
Note that this is the SYSV compliant behaviour that you can modify by using +s on dirs. BSD behaviour has always been to have group inheritance.
Keltia  2009-02-09 17:09:36
It is portable across POSIX-compliant systems, which (at least for this purpose) means anything that ends in X (Unix, Linux, MacOS X).
Jonathan Leffler  2009-02-09 17:24:32

related questions

Obscuring network proxy password in plain text files on Linux/UNIX-likes
Why doesn't **find** find anything?
Getting stack traces on Unix systems, automatically
Differences between unix and windows files
How do you do a case insensitive search using a pattern modifier using less ?
Using Visual Studio to develop for C++ for Unix
How do I generate ASCII codes 2 and 3 in a Bash command line?
What's in your .procmailrc
Allow user to set up an SSH tunnel, but nothing else
What is PHP Safe Mode GID?
How to avoid redefining VERSION, PACKAGE, etc.
How can I encode xml files to xfdl (base64-gzip)?
Faster way to find duplicates conditioned by time
Date arithmetic in Unix shell scripts
Using Xming X Window Server over a VPN
Windows Equivalent of 'nice'
How do I configure and communicate with a serial port?
Choosing a static code analysis tool
What should a longtime Windows user know when starting to use Linux?
How do I use (n)curses in Ruby?
Process size on UNIX
Getting root permissions on a file inside of vi?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
Fastest way to get value of pi