1、在/data/testdir里创建的新文件自动属于g1组,组g2的成员如:alice能对这些新文件有读写权限,组g3的成员如:tom只能对新文件有读权限,其它用户(不属于g1,g2,g3)不能访问这个文件夹。
|
[root@localhost testdir]# mkdir -p /data/testdir [root@localhost testdir]# groupadd g1 [root@localhost testdir]# groupadd g2 [root@localhost testdir]# groupadd g3 [root@localhost testdir]# chgrp g1 /data/testdir [root@localhost testdir]# useradd -G g2 alice [root@localhost testdir]# useradd -G g3 tom [root@localhost testdir]# chmod g+s /data/testdir [root@localhost testdir]# setfacl -Rm d:g:g2:rwx /data/testdir [root@localhost testdir]# setfacl -Rm d:g:g3:r /data/testdir [root@localhost testdir]# getfacl /data/testdir |
2、创建组sales,gid 3000,passwd:centos,sales admins:user2
将用户user1,user2,user3加入到sales辅助组
希望user1 创建新文件 默认的所属组为sales
user2将用户user3从sales组移除
删除sales,user1,user2
[root@localhost ~]# groupadd -g 3000 sales [root@localhost ~]# echo centos > gpasswd --stdin sales [root@localhost ~]# gpasswd -A user2 sales [root@localhost ~]# usermod -g sales user1 [root@localhost ~]# gpasswd -a user1 sales [root@localhost ~]# gpasswd -a user2 sales [root@localhost ~]# gpasswd -a user3 sales [root@localhost ~]# su - user1 Last login: Sat Aug 6 15:28:56 CST 2016 on pts/0 [user1@localhost ~]$ touch a.txt [user1@localhost ~]$ ll !$ ll a.txt -rw-r--r--. 1 user1 sales 0 Aug 6 15:38 a.txt [user1@localhost ~]$ exit logout [root@localhost ~]# su - user2 Last login: Fri Aug 5 21:37:49 CST 2016 on pts/0 [user2@localhost ~]$ gpasswd -d user3 sales Removing user user3 from group sales [user2@localhost ~]$ exit logout [root@localhost ~]# userdel -r user1 userdel: group user1 not removed because it is not the primary group of user user1. [root@localhost ~]# userdel -r user2 [root@localhost ~]# groupdel sales [root@localhost ~]# tail -3 /etc/passwd wangcai:x:1006:1006::/home/wangcai:/bin/bash gentoo:x:1007:1007:Gentoo Distribution:/home/gentoo:/bin/csh user3:x:1010:1010::/home/user3:/bin/bash [root@localhost ~]# tail -3 /etc/group g3:x:3003: user1:x:1008: user3:x:1010: |
原创文章,作者:皱 多利亚,如若转载,请注明出处:http://www.178linux.com/29861
