Fedora Users — Re: Users, groups and directory access

Re: Users, groups and directory access

Date Prev

Date Next

Thread Prev

Thread Next

Date Index

Thread Index

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

Subject: Re: Users, groups and directory access

From: "A.J. Bonnema" <abonnema@xxxxxxxxx>

Date: Wed, 05 May 2004 15:48:57 +0200

In-reply-to: <[email protected]>

References: <[email protected]> <[email protected]> <[email protected]>

Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040113

Matthew Miller wrote:

On Wed, May 05, 2004 at 03:30:07AM -0500, David L Norris wrote:

# root can change john's group membership like this
usermod -G proj john

This is bad because it *replaces* the current list of groups. If john was
previously a member of 'staff' or 'proj2', that would be removed. This is
why gpasswd -a is usually better.


Thanks for allerting me to this detail!

Yes, well I can confirm, although it doesn't work as I expected after reading the man-page.

The primary group is never deleted (the man-page only mentions that groups not listed will be deleted, which appears not to be true for the primary group.

If you add the primary group using 'usermod -G' then all secondary groups are deleted from this user. If you add a secondary group, that is new to this user, the old secondary groups are all deleted (from this user). The primary group remains in effect.

Guus.
--
A.J. Bonnema, Leiden The Netherlands,
user #328198 (Linux Counter http://counter.li.org)