SUMMARY: ACL documentation or tutorials

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

> After years of pursuasion I've managed to get people to start to use ACLs to
> control access to resources on Solaris.
>
> The trouble is they now ask questions about ACLs for which I have no
> answers. The only user level tutorial I've come across is
> http://www.sunworld.com/sunworldonline/swol-06-1998/swol-06-insidesolaris.html
>
> So I'm looking for additional user-level information I can get for our
> users. The manual pages are not sufficient and the error messages returned
> from setfacl are so cryptic that they may as well not be produced at all.
>
> Thanks,
> summary will follow.

Thanks to Martin Backe, Jen Hamilton, Karl Vogel, Justin Clift

The immediate problem the user was having was solved by applying the general
rule - when setting ACL defaults on directories you MUST specify everything.
This can and does result in an insanely complex setfacl command.

Documentation and tutorials

        http://www.sunworld.com/sunworldonline/swol-08-1996/swol-08-security.html
        http://www.sunworld.com/sunworldonline/swol-06-1998/swol-06-insidesolaris.html
        http://www.securityfocus.com/focus/sun/articles/solacls.html

There's also the SUN answerbook docs
        http://docs.sun.com:80/ab2/coll.47.11/SYSADV2/@Ab2PageView/22478?DwebQuery=setfacl&Ab2Lang=C&Ab2Enc=iso-8859-1
        (search on "setfacl" and select "System Administration Guide, Volume 2")

Thanks.

-- 
/\ Geoff. Lane. /\ Manchester Computing /\ Manchester /\ M13 9PL /\ England /\
To register this tagline, send $29 to me
S
U   BEFORE POSTING please READ the FAQ located at
N       ftp://ftp.cs.toronto.edu/pub/jdd/sun-managers/faq
.   and the list POLICY statement located at
M       ftp://ftp.cs.toronto.edu/pub/jdd/sun-managers/policy
A   To submit questions/summaries to this list send your email message to:
N       sun-managers@sunmanagers.ececs.uc.edu
A   To unsubscribe from this list please send an email message to:
G       majordomo@sunmanagers.ececs.uc.edu
E   and in the BODY type:
R       unsubscribe sun-managers
S   Or
.       unsubscribe sun-managers original@subscription.address
L   To view an archive of this list please visit:
I       http://www.latech.edu/sunman.html
S
T

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:14:18 CDT