Re: [PLUG] Group permissions for tech-adverse personnel

[Paul <paul@dpagin.net>]

Never mind.  I see that this can't work.  But Samba's access controls 
look promising.

Paul wrote:

> Create a directory in which access is based on group membership, which 
> it always is.  Call it "project-docs".  Then create groups that will 
> be specific to that directory.  The groups could be called 
> "project-docs-read", "project-docs-write", "project-docs-execute".  On 
> a small scale this could act like an access control list.  For 
> example, one would always be able to read the "project-docs" directory 
> if one is a member of the "project-docs-read" group.  (I may be wrong 
> since it's after bed time.)  So, instead of having groups A, B, and C, 
> which group people together by department, project, or function, the 
> directory-specific groups are used for finer control over directory 
> access.  That will lead to a large number of groups to manage, but on 
> a small scale, it might work.

_________________________________________________________________________
Philadelphia Linux Users Group        --       http://www.phillylinux.org
Announcements - http://lists.netisland.net/mailman/listinfo/plug-announce
General Discussion  --   http://lists.netisland.net/mailman/listinfo/plug