I am frequently formatting and installing SCXE like the rest of us Solaris geeks here. I also have an old ZFS raid called "tank" with lots of files.
First I created tank and copied files to tank, as "root". Thus, root is the owner to all files. This is not good. What happens if my girlfriend wants to access tank? She must be root, which is not good. root must not be owner to all files. Therefore I created a user "John" with user id=1000 and a group called "user" with group id=1000, thus 1000:1000. Now, all files in tank has John as owner (1000:1000). Each time I reinstall Solaris from scratch, I create a user John with 1000:1000 and I can access the tank without problems. But, if I create a user for my girlfriend as 1001:1000 (belonging to the same group "user") can she access tank without problems? How should I set the rights on all files in tank? To belong to group 1000, and that's it? Can all users belonging to group 1000 access tank without problems? But, now I have upgraded opensolaris 2008.11 to build 111 (I can not install b111, I must upgrade to get b111) and the main user John has user id=101 and belongs to staff=10. I tried to change John to 1000:1000 in /etc/passwd but that messed things up badly. John has not the rights to assume the role as root, as I didnt use RBAC. It still is messed up. This is driving me mad. I am considering reinstalling everything and setting up my users correctly from scratch. So how should I setup my users in b111 (upgraded from opensolaris 2008.11)? 1) Upon reinstall, I am considering creating an account "ROOT" = 101:10 and then create a user "John"=1000:1000. And for my girlfriend, create "Wanda"=1001:1000. And let my tank be. 2) Upon reinstall, should I use "John"=101:10 and "Wanda"=102:10 and change ownership on all files in tank to "John"? 3) How would you solve this problem? For all these years, Ive created user sub optimally. So if you have a ZFS raid, how would you create users so everyone can access the ZFS raid? Please advice on this? -- This message posted from opensolaris.org _______________________________________________ opensolaris-discuss mailing list [email protected]
