mchinni@pica.army.mil (Michael J. Chinni, SMCAR-CCS-E) (08/17/89)
System: Gould PN9080 running UTX/32 2.0u03 (BSD 4.2 w/ SysV add-ons).
Given: a group: q
with sub-groups 1 2 3
with subgroups A B C
forming usernames and groups (i.e every group is also a username):
q q1 q2 q3 q1A q1B q1C q2A q2B q2C q3A q3B q3C
and corresponding directories:
/q /q1 /q2 /q3 /q1A /q1B /q1C /q2A /q2B /q2C /q3A /q3B /q3C
such that username q owns /q, username q1 owns /q1, username /q3B owns /q3B,
etc.
I need a way of allowing user q read-access to all files in a sub-directory of
users: q1 q2 q3 q1A q1B q1C q2A q2B q2C q3A q3B q3C.
Currently with just q and sub-groups 1 2 3 I am doing this by puting user q
in the groups q1 q2 q3 and setting group-access permissions on /q1 /q2 /q3
and appropriate sub-directories and files to allow access by user q.
Problem: I tried expanding this one level farther down (to subgroups A B C
giving me the above usernames, groups, and directories) but I have run up
against the group-membership limit (the maximum number of groups any uid can
be in).
I don't want to increase the group-membership limit (I think its called
NGROUPS) for several reasons:
1 - I don't have source
2 - I don't know internals well enough to know the impact of such a
change
3 - If I did, and later expanded the above another level, I would have
to do this change all over again
Other than increasing the group-membership limit is there any way to do what I
need (i.e. a way of allowing user q read-access to all files in a sub-directory
of users: q1 q2 q3 q1A q1B q1C q2A q2B q2C q3A q3B q3C) ?
/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/
Michael J. Chinni
Chief Scientist, Simulation Techniques and Workplace Automation Team
US Army Armament Research, Development, and Engineering Center
User to skeleton sitting at cobweb () Picatinny Arsenal, New Jersey
and dust covered workstation () ARPA: mchinni@pica.army.mil
"System been down long?" () UUCP: ...!uunet!pica.army.mil!mchinni
/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/