Uploaded image for project: 'Product Technical Learning'
  1. Product Technical Learning
  2. PTL-15513

ch11s07 LAB - Control Access to Files

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor Minor
    • None
    • RH124 - RHEL10.0-en-3-20250821
    • RH0020L, RH124
    • None
    • False
    • Hide

      None

      Show
      None
    • False
    • 11
    • en-US (English)

      In step 3 of this exercise, it is not clear how to set up the necessary group ownership and permissions for collaboration without actually looking at the solution.

      • /home/techdocs should really have SGID to ensure that new content is owned by the techdocs group. The solution manually changes group ownership and permissions on a single file which doesn't scale as a workflow.

      In step 5, sub-directories get created where content is read-only for the group. (this is OK, except that a user called editor1 only gets read access which is a bit of a contradiction). In the solution, temporary umask changes are used to secure the content. The exercise misses the opportunity to reinforce how to set the umask persistently for individual users. Even in the previous GE, the lab script does this automatically instead of giving students the opportunity to practice this skill.

      To summarize, a typical collaboration work folder has 3770 permissions and that's what should be reinforced in this lesson. This should be be coupled with a persistent umask of 027 for users in the work group which is significant in the light of the default umask change to 022 in RHEL9 and above.

              zoltanmolnar Zoltan Molnar
              zoltanmolnar Zoltan Molnar
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: