[sudo-users] Setting up chmod to allow all files/directories for a specified path but not allow ..
Patrick Spinler
spinler.patrick at mayo.edu
Wed Dec 9 17:02:12 EST 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
James J. Perry wrote:
> I have been banging my head against this all day long and cannot seem to
> find a solution. I am trying to setup users to be able to chown
> directories under a base path, say /oracle/main, but not allow then to
> do /oracle/main/.. or /oracle/main/../.., which globs out to /. I would
> prefer to not have to write a wrapper script if there is some way to use
> globbing properly to set the restrictions.
Sorry, but as far as I know, you'll pretty much have to write a wrapper
script for this to be secure in the manner you desire.
I can send you copies of my own chown and chmod wrappers (written in
perl) if you'd like.
- -- Pat
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAksgHmQACgkQNObCqA8uBsxFKwCeLbr7p4VcbWmKZKW6gzUmxMRG
k/QAn38KgSOdu61Bo8/UsRztj+3wkIKB
=Uzn/
-----END PGP SIGNATURE-----
More information about the sudo-users
mailing list