[rsbac] Disable file deletion.
Sander Klein
roedie at roedie.nl
Tue Jul 3 09:53:31 CEST 2007
Thank you for your fast answer.
I think I'll have a look at this then.
Regards,
Sander
Amon Ott wrote:
> On Monday 02 July 2007 16:45, Sander Klein wrote:
>
>> I'm new to rsbac so this question might be off topic for this list.
>>
>> I'm looking for a way to have my users upload files (preferably
>> using ssh) and not be able to delete or modify them after they have
>> uploaded them. Is rsbac capable of doing this?
>>
>
> You can set FF flag APPEND_ONLY - all allowed write accesses are
> CREATE and APPEND_OPEN then. RC and ACL can do the same, and
> additionally allow somebody else different kinds of access.
>
> So you can easily deny RENAME, DELETE and other write accesses. RSBAC
> does not have a "write_once" right, though, so that appends will
> still be possible.
>
> Amon.
>
More information about the rsbac
mailing list