[CentOS] SELinux - way of the future or good idea but !!!

Les Mikesell lesmikesell at gmail.com
Mon Nov 29 15:47:05 UTC 2010


On 11/29/2010 7:35 AM, Adam Tauno Williams wrote:
>
> Even if it is *possible*, the traditional UNIX permissions are a serious
> *PAIN*.  If you want two users to have rw- to a file you...  create a
> group of two users???

Yes, there is nothing simpler than a group to represent a group of users.

> You end up with a zillion groups - which is
> pointless and unmaintainable.  Thank goodness for ACL support and
> setfacl/getfacl.

So what do you do when you have user-specific ACLs splattered randomly 
through the filesystem and the members of the cooperating groups change?

-- 
   Les Mikesell
    lesmikesell at gmail.com




More information about the CentOS mailing list