then you might want to try setting the DIRECTORY permissions to 2773 (setting the setgid bit on group level): this should allow any user to DELETE (but not change, I guess) files in that folder.
mkdir pippo chmod 2773 pippo ls -ltrad pippo drwxrws-wx 2 pierluigi users 1024 Jun 10 10:27 pippo
notice the "s" in the permission group
See also http://docs.oracle.com/cd/E19683-01/816-4883/secfile-69/index.html
"When setgid permission is applied to a directory, files that were created in this directory belong to the group to which the directory belongs, not the group to which the creating process belongs. Any user who has write and execute permissions in the directory can create a file there. However, the file belongs to the group that owns the directory, not to the user's group ownership. "
No comments:
Post a Comment