jailkit-users
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Jailkit-users] Don't understand group permissions

From: Olivier Sessink
Subject: Re: [Jailkit-users] Don't understand group permissions
Date: Fri, 09 Jan 2015 08:45:55 +0100
User-agent: Mozilla/5.0 (X11; Linux i686; rv:31.0) Gecko/20100101 Thunderbird/31.3.0
On 01/08/2015 07:22 AM, Caffeine ! wrote:
On my system, /etc/group:
www-data:x:33:p
robber:x:1003:

In the jail:
robber:x:1003:
www-data:x:33:p,robber

I don't understand this:

$ whoami
robber

$ ll
total 4.0K
drwxrwxr-- 3 www-data www-data 4.0K JanĀ  4 16:08 2015/

$ cd 2015/
bash: cd: 2015/: Permission denied

So, despite the fact that user robber is part of group 33, www-data, he still can't cd into 2015/, even though that directory has group permissions of rwx!

The only way robber can access 2015 is if I use my root account and change the permissions of that directory to rwxrwxrwx.

This is even stranger:

$ ls 2015/
ls: cannot access 2015/01: Permission denied
01

The directory structure is 2015/01/, and when I try to list 2015/ it tells me "permission denied" and then goes ahead and lists the directory.

Why are group permissions seemingly ignored?

what does the real /etc/group say?
it might be very well that <jail>/etc/group is not used.

Olivier

-- 
Bluefish website http://bluefish.openoffice.nl/
Blog http://oli4444.wordpress.com/
reply via email to
[Prev in Thread] Current Thread [Next in Thread]