Linux security

Michael T. Richter ttmrichter at gmail.com
Sat Apr 29 06:40:16 UTC 2006


On Sat, 2006-29-04 at 02:30 +0000, William Grant wrote:

> > I can go right down into the nitty-gritties, in Windows (NT+), and say
> > "this file is only readable to this one user, only executable by this
> > one other user, can be write-appended (but not read) by this group of
> > users and can be read/write accessed by this other group over here".
> > Nothing in sudo/chroot/et al gives me anywhere near that level of
> > security control unless I include an add-on that's subverted by half
> > the utilities out there. 



> Hmm. I could have sworn that I used such things on my Linux server
> constantly. Or am I imagining getfacl and setfacl?


Another bolding.  I just downloaded the acl utilities from universe.
Where's the "write-append" access?  Even with the acl extensions in
place you still can't match the functionality that is in Windows
NT-based systems out of the box.

--
Michael T. Richter
Email: ttmrichter at gmail.com, mtr1966 at hotpop.com
MSN: ttmrichter at hotmail.com, mtr1966 at hotmail.com; YIM:
michael_richter_1966; AIM: YanJiahua1966; ICQ: 241960658; Jabber:
mtr1966 at jabber.cn

"[Blacks] ... are inferior to the whites in the endowments both of body
and mind." --Thomas Jefferson
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20060429/bdc5f255/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20060429/bdc5f255/attachment.pgp>


More information about the ubuntu-users mailing list