<div>Yes, as Barry said, use ACL for giving permission for group agents. The permission must be 770 and the group associated to /home/pub must be administrator. Then give acl rx (setfacl -m g:agent:rx /home/pub) to /home/pub. This should solve the issue. Make sure your filesystem is mounted with ACL support.</div>
<div> </div>
<div>Regards,</div>
<div> </div>
<div>Kurian Thayil<br><br></div>
<div class="gmail_quote">On Tue, Jul 7, 2009 at 5:21 PM, Barry Brimer <span dir="ltr"><<a href="mailto:lists@brimer.org">lists@brimer.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div class="im">> 1) Members of the "administrators" group have unlimited read/write<br>> access to /home/pub and below.<br>><br>> 2) Members of the "agents" group have read-only access to /home/pub and<br>
> below.<br>><br>> 3) All the others (that is, members of neither "administrators" and<br>> "agents") have no access at all to /home/pub, not even for listing the<br>> directory content.<br>
><br>> The thing is: I can't seem to formulate my problem in terms of<br>> user/group/others, as there are no owners, but two distinct groups<br>> involved.<br>><br>> Any idea how to crack that nut?<br>
<br></div>Have you looked at using ACLs? Just make sure that any backup software<br>you use can handle them.<br>
<div>
<div></div>
<div class="h5">_______________________________________________<br>CentOS mailing list<br><a href="mailto:CentOS@centos.org">CentOS@centos.org</a><br><a href="http://lists.centos.org/mailman/listinfo/centos" target="_blank">http://lists.centos.org/mailman/listinfo/centos</a><br>
</div></div></blockquote></div><br>