View Full Version : [ubuntu] Folder Permission
Tabu.it
February 28th, 2011, 05:33 PM
Hi
is there a way to allow 3 non sudo users to read/write/delete files in a folder? I need it for a samba server where i store my downloaded files. Thank you
TechWiz2100
February 28th, 2011, 06:07 PM
chmod +rwt /path/to/folder
This will set the folder to read/write for everyone and the sticky bit so new users get access as well
Naggobot
February 28th, 2011, 06:14 PM
Is it possible to run the command recursive?
TechWiz2100
February 28th, 2011, 06:23 PM
Is it possible to run the command recursive?
chmod -R +rwt /path/to/folder
Tabu.it
February 28th, 2011, 06:37 PM
Thank you
Is it possible to run the command recursive?
chmod -R Mode File
http://ss64.com/bash/chmod.html
Tabu.it
February 28th, 2011, 07:18 PM
Is there a way to allow a user to remote login (ssh and samba) only from a bind ip + password?
TechWiz2100
February 28th, 2011, 07:24 PM
I think you can do that by setting domains on the usernames
e.g. 192.168.1.2/techwiz vs just techwiz
I'm not sure how well that works with SSHd but I've done something similar with NT network shares and SFTP
Tabu.it
February 28th, 2011, 07:50 PM
Thank you
I googled and found for smb.conf this
http://www.faqs.org/docs/securing/chap29sec284.html
hosts allow = 127.0.0.1 192.168.2.0/24 192.168.3.0/24
hosts deny = 0.0.0.0/0
The above will only allow SMB connections from 'localhost' (your own computer) and from the two private networks 192.168.2 and 192.168.3. All other connections will be refused connections as soon as the client sends its first packet. The refusal will be marked as a 'not listening on called name' error.
but i couldn't understand the /24 maybe is 192.168.2.0 to 192.168.2.24 ?
and for sshd.conf i found
AllowUsers you@ip.add.re.ss
So for example i could do:
AllowUser me@my.ip userb@userb.ip userc@userc.ip and so on?
TechWiz2100
February 28th, 2011, 08:04 PM
but i couldn't understand the /24 maybe is 192.168.2.0 to 192.168.2.24 ?
http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing#Prefix_aggregation
Its a type of notation for an IP range; more specifically one that defines the host and the network prefix. The /24 is the same as network mask 255.255.255.0 so the IP range would be 192.168.2.0 to 192.168.2.254 (192.168.2.255 is probably reserved for Broadcasting)
Tabu.it
February 28th, 2011, 08:46 PM
http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing#Prefix_aggregation
Its a type of notation for an IP range; more specifically one that defines the host and the network prefix. The /24 is the same as network mask 255.255.255.0 so the IP range would be 192.168.2.0 to 192.168.2.254 (192.168.2.255 is probably reserved for Broadcasting)
Thank you and regarding
AllowUsers you@ip.add.re.ss
So for example i could do:
AllowUser me@my.ip userb@userb.ip userc@userc.ip and so on?
TechWiz2100
February 28th, 2011, 09:10 PM
So for example i could do:
AllowUser me@my.ip userb@userb.ip userc@userc.ip and so on?
For me at my home address it would be techwiz@192.168.1.1 and I would add that to sshd.conf as
AllowUsers techwiz@192.168.1.1, anotheruser@foreign.domain, remoteuser, networkuser@192.168.1.*
TechWiz can only access from 192.168.1.1, anotheruser can only access from the machine called foreign.domain, remoteuser can access from anywhere and networkuser can access from within the 192.168.1.0-255 network
As for passwords, I'm not sure and I think you actually want to add users to you're machine to assign passwords.
Tabu.it
February 28th, 2011, 09:17 PM
Thank you it works :D
Tabu.it
March 19th, 2011, 01:08 AM
Is possible to allow a user to browse only some directory?
For example i want userA(admin) to navigate all system and userB to navigate only its home folders and a directory under /media?
Tabu.it
March 19th, 2011, 01:12 PM
*bump*
Powered by vBulletin® Version 4.2.2 Copyright © 2024 vBulletin Solutions, Inc. All rights reserved.