Re:TechTip: Linux Permissions Simplified

** This thread discusses the article: TechTip: Linux Permissions Simplified **
ACLs continued. For the adventurous who don't mind stepping beyond the commercial Linux distros, independent Debian Web, file, and mail servers can be set up so as to have real security. (Without paying through the nose for any absolute Windoze crap.) But -O ibn Khaldun the Adventurer- sometimes you'll actually have to compile source... I prefer the ext3 filesystem, because it's an extention of the aged -and well-tested- ext2 one. See the below link for a taste: http://www.debianhelp.co.uk/acl.htm

Re:TechTip: Linux Permissions Simplified

** This thread discusses the article: TechTip: Linux Permissions Simplified **
There is also a step beyond those basic permissions. In the latest filesytems (ext3, JFS, XFS, ReiserFS, etc.) supported by Linux, one can assign permissions to particular 'user profiles' and/or 'group profiles'. ('Profile' isn't what Unix/Linux calls their logon ID, but you get the idea...) This is done via ACL (access control list) commands. Here's a link to the openSUSE implementation. http://www.novell.com/products/linux...nsuse/acl.html If you buy the Novell or Red Hat 'commercial' Linux distros, this support comes built-in. Since CPF (AS/400, System i, et alia) now includes POSIX support, Linux filesystem objects can now be secured much like the AS/400 ones have been for aeons.