-
-
Notifications
You must be signed in to change notification settings - Fork 822
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
LGSM isn't in according to POSIX ACL standard #3861
Comments
Maybe we consider to add a variable to skip the check. |
Created a draft PR that could allow to skip this check. |
I think the way forward with permissions will be to only check that the group has correct permissions. |
LinuxGSM/lgsm/functions/check_permissions.sh
Lines 11 to 26 in d86a709
Hello, I use my rust servers with full acl and these rules aren't in according to POSIX ACL standard.
As example, in a Apache server, the right way to manage FTP (according to POSIX ACL standard) is to create one user per real person and give setgid bit to shared folder. Then users can upload in this directory with shared group ownership but user ownership is set as uploader. So you can give access to Linux users to upload and www-data keep the rights to read/write by group access. https://www.gnu.org/software/coreutils/manual/html_node/Directory-Setuid-and-Setgid.html
But these rules are blocking the server because my users are legitimatly uploading in lgsm server directory. Nothing about any root issue that is explained in FAQ.
The text was updated successfully, but these errors were encountered: