[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-developers] RE: cobalt-developers digest, Vol 1 #1474 - 4 msgs
- Subject: [cobalt-developers] RE: cobalt-developers digest, Vol 1 #1474 - 4 msgs
- From: "Ian McCall" <ian@xxxxxxxxxxxx>
- Date: Mon Jun 10 12:29:00 2002
- Organization: Astirion Ltd.
- List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>
>Is it correct to assume that when I grant a client/virtual
>site telnet access, that he can see each and every file on
>the server?
No, fortunately this is not the case. Users are placed into groups based
on their site (fred:site1, jill:site12 etc.). Although each user could
see world-readable files (such as certain configs, some logs etc.), they
would not be able to see files where permission has been granted only
for a group they are not in. So fred, in my example, would be able to
tell that a site12 existed but would not be able to see the files
underneath that directory.
>So in other words, if I gave shell access to client A,
>and client B has an online shop and stores order info in
>flat text files, client A would be able to see client B's
>order info. Right?
Depends on the file permission. If the order file is created with
world-readable permission, then the answer is yes. More likely though,
the file would be created with group-only readable permissions which
makes the answer no.
>If this is correct, is there any solution for this?
Ensure the file's permissions are correct. Try 'man chmod' from the
command prompt for more information.
Cheers,
Ian