Providing A Private Work Directory; Providing A Group Work Area - Novell OPEN ENTERPRISE SERVER - PLANNING AND IMPLEMENTATION GUIDE 12-2010 Implementation Manual

Those familiar with the binary number system find this method an easy way to remember what each
number represents.
For example, the command
owner, group, and other for the /home directory, while
rights to only the directory owner, with group and other having no rights.
grant rwx rights to the owner, r-x rights to the group, and no rights to other users.
For more information about the

17.4.2 Providing a Private Work Directory

To make an NCP directory private, you assign a single user as the trustee and make sure that no
unexpected users or groups have trustee rights in any of the parent directories.
To provide a private work area on a Linux POSIX volume:
1 Make the user is the directory owner. For example, you could use the
change the owner (user),
chown -R user: /path/user_dir
where user is the eDirectory user, path is the file path to the work directory, and user_dir is the
work directory name. The -R option applies the command recursively to all subdirectories and
files.
2 Grant only the user read, write, and execute rights (rwx --- ---) to the directory. For example,
you could use the
chmod -R 700 /path/user_dir
where path is the file path to the work directory, and user_dir is the work directory name.
3 Check each parent directory in the path up to the
(referred to as "other users" in Linux) have read and execute rights (r-x) in each directory as
shown by the third group of permissions (. . . . . . r-x). (Owner and group permissions are
represented by dots because their settings are irrelevant.)
The reason for checking directories is that in the parent directories the directory owners are
"other" users and they need to be able to see the path down to their own private directories.
Because r-x is the default for most directories on Linux, you probably won't need to change the
permissions.

17.4.3 Providing a Group Work Area

On an NCP volume, you can provide a group work area by assigning users to a group and then
granting the group trustee rights to the directory. As an alternative, if users need different levels of
access within the work area, you can assign each user as a trustee and grant only the rights needed.
To provide a group work area on a Linux POSIX volume:
1 Use the
chown -R :group /path/group_dir
194 OES 2 SP3: Planning and Implementation Guide
chmod 777 /home
chmod
command as follows,
chmod
command to set group ownership for the directory. For example, you could enter
chown
would grant read, write and execute rights (7) to
chmod 700 /home
command, see the chmod man page on your OES 2 server.
root (/)
would grant the three
chmod 750 /home
command to
chown
directory, making sure that all users
would