On Sep 12, 2014, at 11:47 AM, Doug Barton <[email protected]> wrote:
> On 9/12/14 11:34 AM, Carl Hoefs wrote: >> >> On Sep 12, 2014, at 10:32 AM, Doug Barton <[email protected]> wrote: >> >>> On 9/12/14 7:18 AM, Michael Maibaum wrote: >>>> I'm not sure that is true: >>>> my setup: >>>> >>>> → ls -l /usr/ | grep local >>>> drwxrwxr-x 20 root admin 680 12 Sep 15:14 local >>>> >>>> this works: >>>> maibaumm:/Users/maibaumm >>>> → touch /usr/local/blah >>>> >>>> >>>> I'm reasonably sure that OS X does use admin as it's primary 'Admin' >>>> group. This isn't a perfect check as I'm at work and I've got lots of >>>> AD derived groups complicating things... >>> >>> Yeah, when I received this system it was all about the admin group. >>> >>> The permissions you have above Michael are the ones that I want to use, but >>> the problem I'm seeing is that unless the group is the first one listed in >>> the output of 'id' or 'groups' (i.e., my personal group) I can't write to >>> the directory. It doesn't matter what group I try other than the first, the >>> result is still the same. >> >> Have you tried doing a “Repair Permissions” on the disk? > > Yes, as well as booting into recovery and doing the verify and check > operations. Thank you for the response in any case. :) On a new, plain vanilla OS X 10.9.4 system here, for /usr and /usr/local I have this: drwxr-xr-x@ 12 root wheel 408 Aug 29 14:21 /usr drwxr-xr-x 10 root wheel 340 Aug 29 14:22 /usr/local All ownership under /usr is root:wheel. In order to write to those directories, one must su to be in the wheel group. As a test, I did the following: % id uid=502(carl) gid=20(staff) groups=20(staff),12(everyone),61(localaccounts),79(_appserverusr),80(admin),81(_appserveradm),98(_lpadmin),403(com.apple.sharepoint.group.2),33(_appstore),100(_lpoperator),204(_developer),398(com.apple.access_screensharing),399(com.apple.access_ssh),401(com.apple.sharepoint.group.3),402(com.apple.sharepoint.group.1) % sudo chown -R root:admin /usr % ls -ld /usr/local drwxr-xr-x 10 root admin 340 Aug 29 14:22 /usr/local % ls -l /usr/local total 8 drwxr-xr-x 13 root admin 442 Aug 29 14:22 bin drwxr-xr-x 19 root admin 646 Aug 29 14:22 include drwxr-xr-x 31 root admin 1054 Aug 29 14:22 lib drwxr-xr-x 14 root admin 476 Aug 29 14:22 packager drwxr-xr-x 3 root admin 102 Aug 29 14:22 pgsql drwxr-xr-x 13 root admin 442 Aug 29 14:22 php5-20130319-152902 drwxr-xr-x 5 root admin 170 Aug 29 14:22 share % touch /usr/local/junk touch: /usr/local/junk: Permission denied % sudo chmod 775 /usr % sudo chmod 775 /usr/local % touch /usr/local/junk % ls -l /usr/local/junk -rw-r--r-- 1 carl admin 0 Sep 12 12:16 /usr/local/junk So, if you’re comfortable setting /usr and /usr/local to 775 mode, you can do what you’re trying to do. You could also accomplish this with ACLs. -Carl _______________________________________________ MacOSX-talk mailing list [email protected] http://www.omnigroup.com/mailman/listinfo/macosx-talk
