On Wed, Apr 02, 2003 at 10:22:32PM +0200, Denis Jacobi wrote: > I stumbled over a problem which I can't seem to solve. On my machine I > have a user (bob) which is a member of 33 groups. Now I created > another group (emma) and added the user (bob) to the group emma. Bob > should now be able to read files where group emma has read permission > on. The problem is that my system just seems to ignore this. Is there > some limit of the number of groups a single user can belong to? Cause > if I add a new user and put him in the group emma, the new user is > able to read emmas files.
Cliff suggested to fire Bob, but that's probably not a realistic solution :-). Seriously, this problem is *much* harder than it looks. As you discovered, the group limit is 32 and is not easily changed - the limit is in a lot of utilities. The better long-term solution is access control lists, but those aren't production-ready yet (according to Red Hat, who pulled them before 9 shipped). I don't know if ldap solves the problem, but I doubt it. We've been creating super-groups that allow access to multiple things. For example, create another group called staffwriters and add bob to that and set the group permissions properly. It's an ugly problem with no good solution. -- Ed Wilts, Mounds View, MN, USA mailto:[EMAIL PROTECTED] Member #1, Red Hat Community Ambassador Program -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
