[K12OSN] Re: Dropbox directory permissions
Robert Arkiletian
robark at gmail.com
Mon Mar 5 21:35:46 UTC 2007
On 3/5/07, Les Mikesell <les at futuresource.com> wrote:
> Robert Arkiletian wrote:
> >>
> >> But if a clever kid happens to know the filename of another kid
> >>
> >> cp /home/inbox/filename ~
> >>
> >> unfortunately works. Not good.
> >> ==============================
> >> My solution:
> >> Write a 1 line bashscript /usr/bin/handin
> >>
> >> cp -p $1 /home/inbox/
> >>
> >> chgrp teacher /usr/bin/handin
> >> chmod 2755 /usr/bin/handin (setgid escalate priviliges to teacher
> >> group)
>
> I think you are doing this backwards. If you use the normal RH/fedora
> scheme where every user has a unique group, all you have to do is add
> the appropriate teacher(s) to each student's group. Then the dropbox
> directory can be wx by all with the sticky bit set and only the teacher
> and the student who owns it will have access to the file contents.
>
No, I'm not using the standard RH scheme of giving each person their
own group. Even if I was setting wx for all still does not prevent a
kid from copying a file IF they know the filename.
--
Robert Arkiletian
Eric Hamber Secondary, Vancouver, Canada
Fl_TeacherTool http://www3.telus.net/public/robark/Fl_TeacherTool/
C++ GUI tutorial http://www3.telus.net/public/robark/
More information about the K12OSN
mailing list