How to limit file access for different users in 10.7.4 Server

Similar Messages

• [SOLVED] Partition & Access for different users

  Hey guys, I’m kind of lost and need some help.
  Scenario:
  My computer is set up with two hard drives: one SSD, which holds Arch and the /home folder, and a regular HDD, which holds the /var folder and where all data should go on two separate partitions.
  Both partitions are mounted at /mnt/HDD2 and /mnt/HDD3.
  Naturally, they both belong to root. However, since I want to be able to save all my music, games and whatnot on these two partitions I need to be able to access them as a normal user. On a single user system that would be a no-brainer; I would simply change the ownership. However, I plan to have another user use my computer from time to time and thus need to have the partitions accessible not only for one but a second user as well. And that’s where I can’t get things to work.
  First I’ve changed the group for the partition (users) and added both users to the corresponding group (users) but could not write on the partition.
  Then I’ve run chmod a+rxw on the partition. Beside the fact that I think that this is quite an inelegant solution, newly created folders where still only accessible by the corresponding user.
  I’ve also set the SGID-Bit but no dice either.
  Now I’m totally lost. Obviously, I’m missing something but I don’t see what.
  tl;dr: I need access to a partition for different users on a single system so that they can easily save, write and share files between each other.
  Any help appreciated.
  Last edited by Janusz11 (2014-10-03 12:32:58)

  Problem solved.
  I ended up using umask. It's basically a single user system anyway with a second user only using it from time to time and both of us having their own group. So it should be relatively save using umask.
  I've changed the owner and group of the partition:
  chown user1:group /mnt/HDD
  ...and the permissions:
  chmod 2770 /mnt/HDD
  ...and added both users to the corresponding group of the partition:
  gpasswd -a user1 group
  gpasswd -a user2 group
  Finally I've changed umask to 007 for each individual user while leaving the system-wide umask untouched.

• How to limit file size for FileUpload UI element?

  Hi all,
  I'm using the FileUpload UI element in NW2004s SP20.
  I want to limit the size of the uploaded file.
  The simple option is to load the file to the context, check the size, by using
  InputStream stream = resource.read(false);
  double size = stream.available();
  and report errors if any.
  However, I don't want to store huge files in the context or flie system (even temporarily) nor 'spend' network resources for uploading a file that I won't be use...
  Is there a way to limit the file size by using some property for the fileUpload UI element in the server?
  Is there a way to check the file size before it's uploaded (for example like GMAIL does - checks the file BEFORE the actual upload)
  Regards,
  Omri

  Hi Omri,
  "(but this can be checked AFTER the file was uploaded)" - what do you really mean here? I mean your main query is to restrict the file upload if it crosses certain size-limit. What is the use if you check the size after upload?
  My problem is the network traffic and the CPU load if users are trying to download huge files..., if the upload is restricted for size this download problem will not come .. correct?
  Not sure about the UI element properties has something to restrict the size, and if its really related to Network traffic and CPU utilization, i think you've to check with Basis team to re-sizing the servers to meet this new requirement of upload/download if its not considered before.
  Or the last option i could see is to use KM Upload iView if sizing is done with these considerations.
  Thanks,
  MS

• How can I manage playlists for different users with home sharing?

  I have two teenagers with no taste in music, my wife who appreciates Abba my own music to manage across a fleet of devices.  My kids dont like Ozarks or Pink Floyd, and I would rather skin myself with a cheese grater than have One direction on my phone.  Does home sharing allow for different devices to sync different playlists???  And furthermore is the icloud Match thing worth the trouble???
  thanks

  After researching through the forums, I figured it out. You have to make sure you are logged in under the same account on both computers. At first I was logged under my account on my computer and logged in under my father's account on my father's computer. You have to choose one account to log in under on both computers and then you will be abler to import songs from both computers. If you do not log in under the same account, you will be able to listen to both computers' music, but not import.

• How can I use Itunes for different users on the same PC

  I have itunes loaded with my full library. I have now created a second user account on my computer for someone else to access, and I want them to be able to access the full library which I have (4500 songs). How can I do this. Currently, when I open itunes in the other user's desktop, it is completely empty. I did try ticking share my music under preferences, but the library has still not appeared.... I know this must be an easy one, but if someone could help me because I must be a bit dim...........many thanks.

  This post should help:
  Natalie Beresford, "Multiple iPods/iTunes Installations", 04:04am Nov 26, 2004 CDT

• SQL Loader and control file changes for different users

  In the front end of my application I can select a data file and a control file, and load data to the table mentioned in .ctl file. Every user who logs in uses the same .ctl file and so loads onto the same table. Now I want the user to load data onto the table in his own schema. I can get the username of the user currently logged in and i want to insert it into that username.table. So can i copy the contents of the .ctl file into a variable, modify it into username.table in that string and pass that variable as a parameter to the sqlldr command instead of the .ctl file.
  Or is there a better way how I can modify the same control file everytime to change tablename to username.tablename in .ctl file and pass to sqlldr to load data to table in local user schema table.
  Thanks and Regards

  Thanks for the reply .. user do have their user credentials but only for the application ... but all users use a common loader and control file once they log into the application. So irrespective of which user is logged in he selects the same control file and loads to the same table mentioned in the control file .. i instead want user to be able to load to the table in control file but into his schema like username.tablename instead of just the tablename mentioned in .ctl file.

• How to hide controls/indicators for different user selection?

  I am trying to simulate time interval analyzer using labview tools but I have a problem in making identical screen as it is on HP 5371A. The only problem is when you choose different arming mode, text pops up on the bottom with different parameters for every mode. So I am trying to build my front panel so that I will have identical features as on HP screen but how can I make some controls/variables (such as delay in secs) dissappear from F.P. for particular arming modes and then again appear for other cases (modes). Thanks in advance for help
  Attachments:
  HP5371A.vi ‏154 KB

  What you'll need to do is to use a while loop to monitor the state of the control. Based on that, you can make other controls visible or invisible, change the strings of a single control, or make controls enabled or disabled. I've attached a simple VI that shows how to make multiple controls visible and invisible. I've only done a few of the arming mode options. For a complete solution, you're going to have a lot of property nodes and I would look at using control references inside of a sbVI. Another way to do it is to forget about emulating the instrument's panel altogether and use the versatility of a computer screen. You've got a lot more real estate than most instruments and have things like tab controls that a user can select.
  Attachments:
  Showing_Options.vi ‏62 KB

• File accessability for multiple users

  I am designing a we application in which each and every updation done by the users will be written in a text file. I have a question that since this is a web based application there will be multiple users accessing the application. And when many users are trying to update a record then they will be accessing the same file.i.e., writing into the same file at the same time and that will be a problem... Please suggest me a solution for this issue.... Some people suggested to use synchronized methods for writing and some suggested like writing into a temporary file and then once the user has finished updating we have to write from the temporary file to the main text file. So the main file is not directly updated by the users..
  Please suggest me if you have any new ideas...Thanks in advance..

  Hi Thanks for your explanation...Since I am new to this field i have a doubt. Could you please explain it.
  Question:
  Will Session affect this logic?
  Consider a user A is performing the update action at location 1 and a user B is performing another update action at location 2. My doubt here is will both the updated records will be present in the same Vector even if the users closes the session? Because what if the user closes the application before the "WorkerThread" runs method "performNextUpdate()". And also will the thread start running from the moment the user logs into the application for every 25ms.
  Sorry if it is a silly question or if you dont understand it properly.

• Sharing files for different users on same computer without duplicating

  Newbie here, I got my 1st mac (in ten years) last week and have been really enjoying it. I set up 3 user's accounts and wanted to share files such as iphoto and itune for all users. So I put my pictures in the shared folder, however, when I opened iphoto in each user's account, I had to import all the photos for every user, which resulted in duplicated files on each user's folders. I have tens of thousands of photos and don't want redundant files eat up my hard drive space. For this reason I'm holding off sharing my itune files.
  I'm wondering if there's a way to allow access for different users without making duplicates.
  20 in. imac   Mac OS X (10.4.8)  

  ewrspotter
  Preferably only admin can edit/import
  Well this makes things very easy and is the way that iPhoto is intended to share. In your Admin account, go to iPhoto -> Preferences -> Sharing and enable Sharing. Note that you can share an entire library or just individual albums. Leave iPhoto running and use Fast-User Switching to move to the other Account(s). In Launch iPhoto and go to Preferences -> Sharing and enable 'Look for Shared Photos'. The main library will turn up in the Source (or left-hand) pane of the other iPhoto.
  Remember that for this to work, the Admin account must be logged in and iPhoto must be running there.
  I don't really care as long as there's no redundant files.
  Define 'redundant'. You do realise that iPhoto is a database, with built-in image viewer, lightweight editor and version control. Version control means that if you modify a photo then iPhoto makes a copy, including the changes, and keeps the Original. This way you can always Revert to Original from the Photos menu. Many people switching to iPhoto are confused by this at first. If you don't want version control I strongly suggest using a different app. There a many, many image viewers for the Mac.
  As to your point comment about One-Touch DVD. I'm not familiar with that piece of Software, but every DVD (and CD) that you burn is assembled on the HD first, then burned. That assembly is a cache file and should be trashed on completion.
  As to disk space: you need to keep about 10 gigs of space on the Start-Up disk for Virtual memory, Temp files and other OS uses. If you do get an external at some point in the future it is possible to run both iPhoto and iTunes from it to free up space on the internal. Just check the help or post back to the relevant forum before moving them. It's not difficult, but there is a procedure that needs to be followed.
  Regards
  TD

• Password security - set permissions for different users

  I am using Abobe Acrobat 9 Pro.
  In the HELP menu, there is a security section in the contents, In the overview, it states the following:
  "Each security method offers a different set of benefits. However, they all allow you to specify encryption algorithms, select the document components to encrypt, and set permissions for different users."
  I would like to know how you can set permissions for different users using Password Security.
  I am the only one in the company who has Acrobat 9 Pro and all others have Adobe Reader 8.
  I have created a PDF file in Acrobat 9, this file is accessible to anyone with Abobe Reader. I would like to set different permissions for different users. For example, i would like certain individuals to print the document and other individuals to not be allowed to print. Can this be acheived using Password Security?
  Many Thanks

  I have created a PDF file in Acrobat 9, this file is accessible to
  anyone with Abobe Reader. I would like to set different permissions for
  different users. For example, i would like certain individuals to print
  the document and other individuals to not be allowed to print. Can this
  be acheived using Password Security?
  No.

• How to create different log files for different users in log4j

  I want to create different logs for different users, using different appenders for each user so that logs are created in his file only.
  Confusion:How to direct them to different files in my logger class

  Hi Avi,
  First of all I have given a first reading to log4j and I think there will some more easy way of logging debugging messages than log4j (If you could provide me a detailed explanation of a servlet,jsp,java bean that uses log4j and how to use log4j then it will be very helpful for me). The other easy ways (if I am not using log4j) to my problem i.e creating different log files for each of web applications deployed in oc4j are
  I have created multiple instances of OC4J that are configured to run on different ports and so on each instance I have deployed a single web application . And I started the 2 oc4j instances by transferring thier error/log messages to a file. And the other way is ..
  I have download from jakarta site a package called servhelper . This servhelper is a thread that is started in a startup servlet and stopped in the destroy method of that startup servlet. So this thread will automatically capture all the system.out.println's and will print those to a file. I believe that this thread program is synchronized. So in this method I need not run multiple instances of OC4J instead each deployed web application on single instance of oc4j uses the same thread program (ofcourse a copy of thread program is put in each of the deployed web applications directories) to log messages on to different log files.
  Can you comment on my above 2 approached to logging debugging messages and a compartive explanation to LOG4J and how to use LOG4J using a simple servlet, simple jsp is appreciated ...
  Thanks and Regards,
  Ravi.

• Access control for different user groups in APEX 4.0

  Hi guys,
  in Apex 4.0, is there any way to use the access control page to configure access control for different user groups?
  The access control page currently only has an access control list by users with 3 privileges namely, Administrator, Edit & View where Administrator has the highest access level & View the lowest. Therefore 1 user cannot have more than 1 different privilege, however if the user belongs to 2 or more different groups then we can control what access he can have in a more fine grained manner. We also want to have more than the 3 privileges given.
  Can we assign different groups to different users and let them have different privileges to be configured by page, region, process or item level?
  Now Apex will create 2 tables, Apex_Access_Control & Apex_Access_Setup to store the application access control mode & access control list. It will also create 3 authorization schemes "access control - administrator", "access control - edit" & "access control - view" based on the 2 tables.
  Does this mean we have to change the table structures & edit the authorization schemes to suit our usage? We are reluctant to do this because if we upgrade to a newer version of Apex then we would have to merge our pl/sql coding with Apex's updated code.
  How can we auto-configure more than the 3 authorization schemes in the access control page? Is there any way to achieve a finer grain of access control based on the current access control administration page given by Apex without writing it ourselves?
  We are afraid that we may have missed something on Apex access control & do not want to reinvent the wheel.

  Hi Errol,
  to build your own application authorization scheme around the security model supplied by Apex for administration of the Apex environment would be a bad idea.
  This was never intended for authorization scheme management in custom built Apex applications, it was solely intended to control access in the Apex environment overall. The API for it is not published, and making changes to it, such as adding more roles, would run the risk of breaking the overall Apex security model. It would not be supported by Oracle and Oracle would not guarantee the upwards compatibility of any changes you make in future versions of Apex.
  In short, you should follow Tyson's advice and build your own structure. As he indicated, there are plenty of examples around and provided your requirements are not too complicated, it will be relatively simple.
  Regards
  Andre

• Hi I have two questions. I am using NAS 4.1 and was wondering is it possible to set a different session timeout for different users? How is the session timeout set? Thanks, YS

   

  <i>I am using NAS 4.1 and was wondering is it possible to set a different session timeout for different users?</i>
  Um, there is no such thing as NAS4.1.
  I'm assuming that you mean NAS4.0 (maybe NAS4.0sp1?). If so, then the session timeouts are specified in the session section of the NTV configuration files.
  AFAIK, you can specify session timeouts on a per user basis.

• How to restrict the access of "InPlaceRecordsListSettings.aspx" and "InPlaceRecordsSettings.aspx" pages for some users and allow the access for some users?

  I have a requirement to restrict the access of "InPlaceRecordsListSettings.aspx" and "InPlaceRecordsSettings.aspx" pages for some of the users and allow the access for some of the users.
  I have applied the below code on the web.config file but this modification impacting only on the web application level not on the site collection and sub site level.  
  <location path="_layouts/15/InPlaceRecordsSettings.aspx">
      <system.web>
        <authorization>
          <deny users="*" />
        </authorization>
      </system.web>
    </location>
  <location path="_layouts/15/InPlaceRecordsListSettings.aspx">
      <system.web>
        <authorization>
          <deny users="*" />
        </authorization>
      </system.web>
    </location>
  When I tried the access on
  :<portno>/sites/<scname>/_layouts/15/InPlaceRecordsSettings.aspx">http://<servername>:<portno>/sites/<scname>/_layouts/15/InPlaceRecordsSettings.aspx page allowed the access for all users.           
  Please suggest the possible solution to restrict the access of "InPlaceRecordsListSettings.aspx" and "InPlaceRecordsSettings.aspx" pages on SharePoint2013.
  Thanks
  Ramasubbu

  You can't do it from OOTB. 
  _layout folder is accessible to the users if they have read access in any of the site even subsite.
  You can modify *.aspx file, add your custom control which will check user.
  [custom.development]

• How to set different default interactive reports for different user groups?

  I'm probably overlooking an obvious solution, but how do I set different default interactive report for different user groups?
  For the same interactive report, I want one set of users to see a default where the default filter is based on column X. However, another group of users doesn't have authorization to see that column so I need to set the default filter to something else for them.
  Thanks

  You can set a filter on a report in a URL - would that help? I think with apex 4.x you can also link to a saved default report or alternative report...