Sanya Karatu/Rubuta Samun damar mai amfani akan Takamaiman Jagora a Linux

A cikin labarin da ya gabata, mun nuna muku yadda ake ƙirƙirar kundin adireshi a cikin Linux. Anan, zamu bayyana yadda ake ba da damar karantawa/rubutu ga mai amfani akan takamaiman jagorar a Linux.

Akwai hanyoyi guda biyu masu yuwuwar yin wannan: na farko shine ƙirƙirar ƙungiyoyi masu amfani don sarrafa izinin fayil, kamar yadda aka bayyana a ƙasa.

Don manufar wannan koyawa, za mu yi amfani da saitin mai zuwa.

Operating system: CentOS 7
Test directory: /shares/project1/reports 
Test user: tecmint
Filesystem type: Ext4

Tabbatar cewa an aiwatar da duk umarni azaman mai amfani ko amfani da umarnin sudo tare da gata daidai.

Bari mu fara da ƙirƙirar kundin adireshi mai suna rahotanni ta amfani da umarnin mkdir:

# mkdir -p /shares/project1/reports   				

Amfani da ACL don Ba da damar Karatu/Rubuta ga Mai amfani akan Directory

Muhimmi: Don amfani da wannan hanyar, tabbatar da cewa nau'in tsarin fayil ɗin Linux ɗinku (kamar Ext3 da Ext4, NTFS, BTRFS) suna goyan bayan ACLs.

1. Da farko, duba nau'in tsarin fayil na yanzu akan tsarin ku, da kuma ko kernel yana goyan bayan ACL kamar haka:

# df -T | awk '{print $1,$2,$NF}' | grep "^/dev"
# grep -i acl /boot/config*

Daga hoton da ke ƙasa, nau'in tsarin fayil shine Ext4 kuma kernel yana goyan bayan POSIX ACLs kamar yadda zaɓin CONFIG_EXT4_FS_POSIX_ACL=y ya nuna.

2. Na gaba, duba idan tsarin fayil (bangare) an ɗora shi tare da zaɓi na ACL ko a'a:

# tune2fs -l /dev/sda1 | grep acl

Daga fitowar da ke sama, za mu iya ganin cewa tsoho zaɓin zaɓi ya riga ya sami tallafi ga ACL. Idan ba a kunna shi ba, zaku iya kunna shi don takamaiman bangare (/dev/sda3 don wannan yanayin):

# mount -o remount,acl /
# tune2fs -o acl /dev/sda3

3. Yanzu, lokaci ya yi don sanya damar karanta/rubutu ga mai amfani tecmint zuwa takamaiman kundin adireshi mai suna reports ta hanyar aiwatar da waɗannan umarni.

# getfacl /shares/project1/reports       		  # Check the default ACL settings for the directory 
# setfacl -m user:tecmint:rw /shares/project1/reports     # Give rw access to user tecmint 
# getfacl /shares/project1/reports    			  # Check new ACL settings for the directory

A cikin hoton da ke sama, mai amfani tecmint yanzu yana da izinin karantawa/rubutu (rw) akan directory/shares/project1/ reports kamar yadda aka gani daga fitowar umarnin getfacl na biyu.

Don ƙarin bayani game da lissafin ACL, duba jagororin mu masu zuwa.

1. Yadda ake amfani da ACLs (Jessin Gudanarwa) don Saita Ƙimar Disk don Masu amfani/Kungiyoyi
2. Yadda ake amfani da ACLs (Jessin Gudanar da Shiga) zuwa Haɓaka Hannun Hannun Sadarwar Sadarwar

Yanzu bari mu ga hanya ta biyu na sanya damar karanta/rubutu zuwa kundin adireshi.

Yin amfani da Ƙungiyoyi don Ba da damar Karatu/Rubuta ga Mai amfani akan Jagora

1. Idan mai amfani ya riga yana da tsohuwar ƙungiyar mai amfani (yawanci tare da suna iri ɗaya da sunan mai amfani), kawai canza mai rukunin directory.

# chgrp tecmint /shares/project1/reports

A madadin, ƙirƙiri sabon rukuni don masu amfani da yawa (waɗanda za a ba su izinin karantawa/rubutu akan takamaiman jagorar), kamar haka. Koyaya, wannan zai ƙirƙiri kundin adireshi da aka raba:

# groupadd projects

2. Sannan ƙara mai amfani tecmint zuwa rukunin projects kamar haka:

# usermod -aG projects tecmint	    # add user to projects
# groups tecmint	            # check users groups

3. Canja mai rukunin littafin zuwa ayyuka:

# chgrp	projects /shares/project1/reports

4. Yanzu saita damar karanta/rubutu ga membobin rukuni:

# chmod -R 0760 /shares/projects/reports
# ls  -l /shares/projects/	    #check new permissions

Shi ke nan! A cikin wannan koyawa, mun nuna muku yadda ake ba da damar karantawa/rubutu ga mai amfani akan takamaiman jagorar a Linux. Idan wasu batutuwa, yi tambaya ta sashin sharhin da ke ƙasa.