John Grange wrote:
> it is actualy very usefull because say you want user A to be able to access
> files in a dirrectory but you do not want the people in the users group to be
> able to access them, then you just set the gid of the dir to that users gid ,
> it's not stupid it's very usefull and i find i use it very often on my server.
I didn't say it wasn't useful, I said it was counter-intuitive. There's
a difference here. As I noted, the defaults of the system are specified
(see /etc/default/useradd) but ignored by the software. That is not the
expected behaviour of software.
The way I normally do the behaviour you mention is: chmod 0700 xxx
That allows only the user and root to access it, and is the normal way
of implementing Unix security permissions. Bear in mind that the
inutuitive model comes from people migrating from both Windows and
traditional Unix systems.
John
