From owner-freebsd-questions Sat Jul 5 10:34:06 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA12141 for questions-outgoing; Sat, 5 Jul 1997 10:34:06 -0700 (PDT) Received: from jason04.u.washington.edu (root@jason04.u.washington.edu [140.142.78.5]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA12134 for ; Sat, 5 Jul 1997 10:34:03 -0700 (PDT) Received: from saul9.u.washington.edu (root@saul9.u.washington.edu [140.142.82.7]) by jason04.u.washington.edu (8.8.4+UW97.04/8.8.4+UW97.05) with ESMTP id KAA27194; Sat, 5 Jul 1997 10:34:02 -0700 Received: from s5-25-199.student.washington.edu (S5-25-199.student.washington.edu [128.95.25.199]) by saul9.u.washington.edu (8.8.4+UW97.04/8.8.4+UW97.04) with SMTP id KAA11259; Sat, 5 Jul 1997 10:34:01 -0700 (PDT) Message-Id: <3.0.2.32.19970705173716.007adc20@jcwells.deskmail.washington.edu> X-Sender: jcwells@jcwells.deskmail.washington.edu (Unverified) X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.2 (32) Date: Sat, 05 Jul 1997 17:37:16 +0000 To: Jason McKay , questions@FreeBSD.ORG From: Jason Wells Subject: Re: Groups In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-questions@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 23:56 05-07-97 +0800, Jason McKay wrote: > >I have my dial-up users in two groups (users & mailacc) ... >I wish to make it so, the people in the users group have access to all >programs in the /usr/local/bin directory. But the people in the mailacc >group can't access the programs in the above directory. > >How is this possible, do I use chmod?? if so what command parameters. >I have my dial-up users in two groups (users & mailacc) ... >I wish to make it so, the people in the users group have access to all >programs in the /usr/local/bin directory. But the people in the mailacc >group can't access the programs in the above directory. > >How is this possible, do I use chmod?? if so what command parameters. You need to use two commands. Chmod to set the permission. Chown to set the ownership. Use chown the set the group ownership of /usr/local/bin to "users". Then use chmod to set the "group" permissions for /usr/local/bin to group readable and executable. You must also set the "other" permission so that all other users (including mailacc) are excluded from this directory. If you fail to exclude the "other" users then you are defeating your purpose. Administrative note: You should change all the permissions and ownerships of the files within the directory as well. Use the -R operator to do this quickly. This will make the directory accessible to people in group "users" so that they may read and execute. You may choose to give them power to write as well. I dare say that you will choose against this to keep folks from messing with the binaries that your other users need. Since no one of the "other" users can gain permission, the group mailacc will not have this access. See man chmod and man chown for the specific syntax. Later, Jason Wells