Welcome to Planet openSUSE

This is a feed aggregator that collects what openSUSE contributors are writing in their respective blogs.

To have your blog added to this aggregator, please read the instructions.


Tuesday
21 October, 2014


face

Здравствуйте читатели, запах елок и ускорение темпа жизни возвещает нам о наступлении 2011 года И я спешу выложить все, что у меня накопилось в черновиках И расскажу я вам сегодня о том, как очень быстро, за несколько минут поднять VPN сервер. В принципе, ничего сложного нет, но следуя стилю всех постов в этом блоге, я [...]


face

Здравствуйте, сегодня расскажу вам о dnsmasq. Сам я познакомился с этой утилитой не так давно. Это очень легкий и простой в настройке DHCP, DNS и TFTP сервер(!). Если вам нужно очень быстро настроить офисный шлюз с нуля, без создания дополнительных внутренних зон, то dnsmasq станет идеальным вариантом. Dnsmasq имеет следующие возможности: - встроенный DNS сервер [...]


face

Сегодня хочу показать как сделать простейший роутер из компьютера с ОС openSUSE в течении нескольких минут. Сделать это сможет каждый, кто хоть немного знаком с консолью и понимает для чего нужны IP адреса . На моей машине внутренним интерфейсом является eth0(192.168.1.1), а внешним eth1. Начнем по порядку: I) Настройка сервера DNS: Устанавливаем: user@opensuse:~> sudo zypper [...]


face

Здравствуйте читатели, к сожалению, никак не хватает у меня времени сделать еще 2 статьи про быструю настройку NAT и прозрачное проксирование в openSUSE с помощью SQUID. Но надеюсь через 2 недели у меня появиться окошко и я, все-таки, реализую свои планы. А теперь о позитивном, недавно вернулся с конференции HighLoad ++. Узнал очень много нового [...]


face

Привет! Сегодня расскажу вам как быстро поднять файловый сервер в сети, весь процесс настройки не займет и 20 минут(разумеется, если у вас хорошая скорость интернета ) Поехали: 1) Устанавливаем Samba: user@linux-m71t:~> zypper install samba 2) Смотрим конфиг: Хочу рассказать здесь обо всех опциях, которые могут понадобится. По умолчанию в секции global следующие опции: user@linux-m71t:~> cat [...]


face

Здравствуйте, сегодня хочу рассказать, о том, как установить и настроить VirtualBox на сервере, с которым работа ведется только по SSH. Это очень удобно, если где-то у вас имеется мощный сервер, а хочется экспериментов, ставим VirtualBox, поднимаем RDP/VNC в системе, в зависимости от предпочтений и пользуемся Указанная последовательность настройки VirtualBox будет работать в любом линукс дистрибутиве. [...]


face

Вы еще не знаете, как обновить KDE 4.4 вашей Opensuse 11.3 до нового восхитительного релиза KDE 4.5? Тогда этот пост предназначен специально для Вас. Те, кому не терпится увидеть новейший KDE, могут воспользоваться предложением одного из разработчиков KDE Уилла Стивенсона, позволяющим уменьшить количество шагов в процессе обновления. Если вы еще не опытный пользователь или просто [...]


face

Внимание, отличная новость! Недавно команда разработчиков KDE проанонсировала релиз KDE 4.5.0, самого последнего релиза этой знаменитой рабочей среды. Этот выпуск рабочей среды включает обновления для платформы разработчиков, приложений KDE, основного рабочего стола – все это включено в очень важный для всего сообщества KDE релиз. Возможно, из-за слишком больших задержек в процессе выпуска, вы уже не [...]


face

openSUSE линукс считается одной из самых красивых open-source ОС. Учеными доказано - зеленый цвет успокаивает глаза В связи с этим хочу поделиться обоями с символикой хамелеона: Наслаждаемся okbm("http://sapfeer.ru/krasivye-oboi-s-simvolikoj-opensuse/","Красивые обои с символикой openSUSE")


Monday
20 October, 2014


face

The biggest part of this HackWeek will be spent on Weblate. The major task is to complete new UI for it. There have been already some blog posts about that here, so regular readers of my blog already know it is using Twitter Bootstrap.

Today it has reached point where I think it's good enough for wider testing and I've deployed it at Hosted Weblate (see Weblate website for conditions for getting hosting there).

I expect there will be some rough edges, so don't hesitate to report any issues, so that I can quickly fix them.

Filed under: English phpMyAdmin SUSE Weblate | 0 comments | Flattr this!


face

Publicado no Viva O Linux um documento onde veremos como destravar e instalar o Android 5.0 Lollipop em equipamentos Nexus 5. Disponibilizo também as principais novidades desta versão como o visual, a nova máquina virtual ART, as novas API Camera 2 e VOLTA para consumo de bateria entre outros. Confira AQUI o artigo na integra!

visualvolAparelhos que receberão atualização:

Nexus: Modelo 4 , 5, 7 e 10.
Sony : Z Ultra Google Play Edition, celulares Z2 e Z3, Z, ZL, ZR, Tablet Z, Z1, Z1S e Z1 Compact.
Motorola : Moto X, Moto G, Moto G 4G, Moto E, Droid Ultra, Droid Maxx e Droid Mini.
LG : Não anunciado até o presente momento. Prováveis: Moto X, Moto G, Moto G 4G, Moto E, Droid Ultra, Droid Maxx e Droid Mini.
Samsung : Não anunciado. Prováveis :Galaxys S5, S4 e o Note 3



face

Telepathy, el cliente de mensajería instantánea de KDE lanza una nueva versión, con múltiples mejoras y nuevas funcionalidades.

De las cenizas de Kopete resurgió hace tiempo Telepathy, el cliente de mensajería instantánea (y mucho más) para escritorios KDE.

Hoy leo la noticia de que los desarrolladores de Telepathy han lanzado una nueva versión de este paquete, la 0.9.0. Y como es habitual, corrigen errores reportados, y añaden nuevas funcionalidades.

Off The Record (OTR)

Entre ellas una de las más esperadas es el cifrado OTR que añade un nivel extra de cifrado al protocolo ya existente que se envía en cads mensaje. Este cifrado previene cualquier tipo de intento potencial de “husmear” en las conversaciones.

Esta nueva funcionalidad hay que agradecérsela a Marcin Ziemski que este verano se comprometió a implementar un soporte total con OTR3, incluyendo una gestión de claves.

Además se ha rediseñado la pantalla principal de charla, lo que hace más sencillo comunicarse con mucha gente, además de la pantalla de unirse a un chat.

También se mejoran y actualizan las llamadas en vídeo, actualizando la interfaz. Se mejora en velocidad y como he mencionado, se corrigen errores.

Agradecer al equipo de KDE su trabajo, y dedicación para mejorar la experiencia de los usuarios en muchos aspectos.

Por cierto si queréis probarlo podéis instalarlo (en openSUSE ya está disponible esta nueva versión) y podemos charlar mediante Jabber: victorhck@suchat.org

Enlaces de interés

no_privacy_without_free_software

———————————————————–



face

Ayer anunciamos que se ha lanzado la primera actualización del  escritorio Plasma 5, el escritorio de linux más avanzado de la Comunidad KDE.  Hoy toca hablar de qué nos ofrece, hoy toca hablar de las novedades de Plasma 5.1 El nuevo Plasma 5.1 El  15 de octubre fue lanzado plasma 5.1, la primera gran revisión [&hellip


Michal Čihař: Enca 1.16

08:00 UTC

face

As a first tiny project in this HackWeek, Enca 1.16 has been just released. It mostly brings small code cleanups and missing aliases for languages, but fixes also some minor bugs found by Coverity Scan.

If you don't know Enca, it is an Extremely Naive Charset Analyser. It detects character set and encoding of text files and can also convert them to other encodings using either a built-in converter or external libraries and tools like libiconv, librecode, or cstocs.

Full list of changes for 1.16 release:

  • Fixed typo in Belarusian language name
  • Added aliases for Chinese and Yugoslavian languages

Still enca is in maintenance mode only and I have no intentions to write new features. However there is no limitation to other contributors :-).

You can download from http://cihar.com/software/enca/.

Filed under: Enca English SUSE | 0 comments | Flattr this!


Sunday
19 October, 2014


face

Se aproxima el fin de año, tiempo en el que la generosidad florece entre los humanos y muchas personas realizan donaciones a todo tipo de causas. La fundación KDE e.V. lanza una campaña de recaudación de fondos llamada KDE fin de año 2014, en la que pretende que tu donación se convierta en realidad en [&hellip


face

Hey all! So in the continued effort to get the wiki ready for the next openSUSE release, I am going to ask all of you to help out and try to take some screenshots for the page. Basically, all you need to do is take screenshots for the parts listed on this page, upload them to the wiki and on this page replace the link to the 12.3 image to your new 13.2 image. Don’t forget to change the file description to 13.2 if it says 12.3! Eventually this page will be moved so that it replaces the current distro screenshot page.



Saturday
18 October, 2014


Pavel Machek: N900 nfs root

19:43 UTC

face

So you'd like to develop on Nokia N900... It has serial port, but with "interesting" connector. It has keyboard, but with "interesting" keyboard map, you mostly need full X to be useful... and it is too small for serious typing, anyway. You could put root filesystem on SD card, but that is disconnected when back cover is removed. And with back cover in place, you can't reset the machine.

Ok, so NFS. Insecure, tricky to setup, but actually makes the development usable. I started with commit 4f3e8d263^ (because that should have working usb networking according to mailing lists).. and with config from same page. Disadvantage is that video does not work with that configuration... but setting up system blind should not be that hard, right?

Assemblying minimal system with busybox from so I could run second-stage of debootstrap was tricky, and hacking into the resulting debian was not easy, either, but now I have telnet connections and things should only improve.


face

Ayer anunciamos que se ha lanzado la primera actualización del  escritorio Plasma 5, el escritorio de linux más avanzado de la Comunidad KDE.  Hoy toca hablar de qué nos ofrece, hoy toca hablar de las novedades de Plasma 5.1 El nuevo Plasma 5.1 El  15 de octubre fue lanzado plasma 5.1, la primera gran revisión [&hellip


Friday
17 October, 2014


Michael Meeks: 2014-10-17: Friday

22:12 UTCmember

face
  • Early to rise; quick call, mail, breakfast; continued on slideware - really thrilled to use droidAtScreen to demo the LibreOffice on Android viewer.
  • Off to the venue in the coach; prepped slides some more, gave a talk - rather a hard act to follow at the end of the previous talk: a (male) strip-tease, mercifully aborted before it went too far. Presented my slides, informed by a few recent local discussions:
    Hybrid PDF of LibreOffice under-development slides
  • Quick lunch, caught up with mail, customer call, poked Neil & Daniel, continued catching up with the mail & interaction backlog.
  • Conference ended - overall an extremely friendly & positive experience, in a lovely location - most impressed by my first trip to Brazil; cudos to the organizers; and really great to spend some time with Eliane & Olivier on their home turf.

face

Cette semaine, KDE a publié Plasma 5.1.0, cette première mise à jour contient de nombreuses nouvelles fonctionnalités depuis la sortie de Plasma 5.0 cet été. Plasma 5.1 apporte un large éventail d’améliorations, provoquant une meilleure stabilité, de meilleures performances et des nouveautés ou améliorations de fonctionnalités.

mascot_20140730_konqui-app-multimedia_wee

Grâce aux réactions de la communauté, les développeurs KDE ont été capables de déployer un grand nombre de corrections et d’améliorations dans cette version, parmi lesquelles un thème plus complet et de meilleure qualité respectant le style Breeze, ainsi que le retour de fonctionnalités disparues comme le gestionnaire de tâches par icônes (Icon Tasks Switcher) et l’amélioration de la stabilité et des performances.

icons_task_manager

Ceux qui voyagent régulièrement apprécieront un meilleur support des fuseaux horaires dans les paramètres de l’horloge, tandis que les autres pourront apprécier le gestionnaire de presse papier remastérisé, leur permettant ainsi de garder un œil à un historique de presse-papier plus visuel.

plasma-main2

Le style Breeze pour les « éléments graphiques » est maintenant disponible pour les applications basées sur Qt4, amenant une meilleure harmonie entre les applications. Le travail pour supporter Wayland comme serveur d’affichage pour Plasma est toujours en cours, avec des améliorations mais pas encore suffisantes pour un support complet dans cette 5.1. Les changements concernant plusieurs composants par défaut améliorent l’accessibilité pour les mal-voyants avec l’ajout du support pour les lecteurs d’écran et une navigation au clavier améliorée.

qt4_widgets_plus_icontasks

Du coté des améliorations visuelles et du travail sur les fonctionnalités, le focus pour cette sortie a été mis sur la stabilité et les améliorations de performances avec plus de 180 bugs corrigés depuis la 5.0. Plasma 5.1 nécessite KDE Frameworks 5.3 qui amène également de son coté une importante quantité de corrections et d’améliorations de performances.

Aidez !

bannerFundraiser2014

KDE a également lancé une campagne de financement pour cette fin d’année. Donnez un peu pour soutenir ce magnifique projet et recevez une carte postale avec notre mascotte.

Toutes les infos ici : [en] https://www.kde.org/fundraisers/yearend2014/

 Testez !

Pour tester facilement cette nouvelle version de Plasma, deux solutions :

  • Soit vous êtes joueur vous pouvez l’installer sur votre openSUSE avec les dépôts KDE

Suivre la démarche indiquée ici : [en] http://en.opensuse.org/SDB:KDE_repositories#KDE_Frameworks_5_.26_Plasma_5

 

Sources


Thursday
16 October, 2014


Michael Meeks: 2014-10-16: Thursday

21:00 UTCmember

face
  • To the venue, crazy handing out of collateral, various talks with people; Advisory Board call, LibreOffice anniversary Cake cutting and eating (by massed hordes).
  • It is extraordinary, and encouraging to see how many young ladies are at the conference, and (hopefully) getting engaged with Free Software: never seen so many at other conferences. As an unfortunate down-side: was amused to fobb off an un-solicited offer of marriage from a 15yr old: hmm.
  • Chewed some mail, bus back in the evening; worked on slides until late, for talk tomorrow.

face

After about a year in the making for MimeKit and nearly 8 months for MailKit, they've finally reached 1.0 status.

I started really working on MimeKit about a year ago wanting to give the .NET community a top-notch MIME parser that could handle anything the real world could throw at it. I wanted it to run on any platform that can run .NET (including mobile) and do it with remarkable speed and grace. I wanted to make it such that re-serializing the message would be a byte-for-byte copy of the original so that no data would ever be lost. This was also very important for my last goal, which was to support S/MIME and PGP out of the box.

All of these goals for MimeKit have been reached (partly thanks to the BouncyCastle project for the crypto support).

At the start of December last year, I began working on MailKit to aid in the adoption of MimeKit. It became clear that without a way to inter-operate with the various types of mail servers, .NET developers would be unlikely to adopt it.

I started off implementing an SmtpClient with support for SASL authentication, STARTTLS, and PIPELINING support.

Soon after, I began working on a Pop3Client that was designed such that I could use MimeKit to parse messages on the fly, directly from the socket, without needing to read the message data line-by-line looking for a ".\r\n" sequence, concatenating the lines into a massive memory buffer before I could start to parse the message. This fact, combined with the fact that MimeKit's message parser is orders of magnitude faster than any other .NET parser I could find, makes MailKit the fastest POP3 library the world has ever seen.

After a month or so of avoiding the inevitable, I finally began working on an ImapClient which took me roughly two weeks to produce the initial prototype (compared to a single weekend for each of the other protocols). After many months of implementing dozens of the more widely used IMAP4 extensions (including the GMail extensions) and tweaking the APIs (along with bug fixing) thanks to feedback from some of the early adopters, I believe that it is finally complete enough to call 1.0.

In July, at the request of someone involved with a number of the IETF email-related specifications, I also implemented support for the new Internationalized Email standards, making MimeKit and MailKit the first - and only - .NET email libraries to support these standards.

If you want to do anything at all related to email in .NET, take a look at MimeKit and MailKit. I guarantee that you will not be disappointed.


face

I hope all who have been using the appliance are enjoying it and finding it useful. I felt it time to update the appliance to include patches to the latest known threats and critical updates to OpenStack.

Latest version 4.0.3

Changes from Github Project

  • Refreshed the Update Repositories to contain latest patches
  • Applied latest Updates to the Appliance
Direct Download links
Please visit the the landing page for the appliance to get more information and documentation here.
Some future things that are coming to look forward to. 
  • Incorporating an Installation media which includes the latest packages from the update repositories for SLES 11 SP3, High Availability Extension, and SUSE Cloud 4 OpenStack. This Installation media will allow me to exclude the full update repositories on the image and therefore reduce the size of the image to just under 2GB. 
  • Moving the build of the image over to openSUSE OBS (Open Build Service) to allow more rapid deployment and testing.
These things will allow for greater portability of the OpenStack software and inherent with it you can install anywhere. Install on VMware. Install on Virtual Box. Install on KVM. Install on Bare Metal. You can truly use this image to deploy and test it out on VMware or KVM, and from the same image you can use it to deploy a full production OpenStack on Bare Metal.  I have even used it to install and test OpenStack out on AWS. So go forth and enjoy installing OpenStack with ease. I challenge you to start using this appliance and see how easy it can be to setup and run OpenStack software. 

Jos Poortvliet: Release party time!

12:08 UTCmember

face

KDE Plasma 5.1

Plasma 5.1 was released yesterday and it is looking real good. I have been running the 'next generation' Linux desktop on my laptop, courtesy of openSUSE packages made out of regular git snapshots. It was surprisingly stable so I have little worries about the stability of the final 5.1 release and I recommend to check it out ;-)

Of course, we should have a Plasma release party! We haven't had release parties in our place for a while (can't believe that the last one is over 2 years ago...), so it's time to do that again.

Check the release party page for details. The short of it:
  • October 18, 19:00-22:00 or so
  • EldenaerStrasse 28a, Berlin, Germany
  • Bring Your Own Devices Drinks (there's a Spätie (24h convenience store) downstairs). Food is welcome, too.
  • Don't forget to bring your good mood and friends

Further notes:
  • I might do some demoing of what is new in Plasma 5.1, depending on interest.
  • Anybody is welcome, as always, irrespective of color, sex, occupation, shape - heck, even species - you're all super welcome! That means you have to play nice with each other, do I have to say that?
  • If you're afraid of dogs, Popcorn will teach you that you don't have to be. But really, if she freaks you out, we can put her in another room, don't say home out of fear for the hairy monster!
  • Let me know if you're coming - so we have some idea of how crowded our apartment will be!

openSUSE

For the geekos among you: 13.2 is coming SOON and boy, is it chock-full of awesomeness! I'm talking to the Berlin LUG, we will probably do a release party. If possible we'll do it on November 8, so keep that date free for now!

face

opensuseasiasummitThis weekend is the start of openSUSE’s first Asia Summit in Beijing.

The summit, which is a follow on to an open source summit SUSE sponsored in May, is expected to increase awareness in Asia about openSUSE and other Free and Open Source Software (FOSS).

Students, professors and computer technologists attending the summit will listen to several keynote speakers like Dr. Qiu Shanqin, Chairman of China Open Source Software Promotion Union, and Ralf Flaxa, Vice President of SUSE. Richard Brown, President of the openSUSE board, will also provide a keynote speech to attendees.

Noteable workshops scheduled for the conference on Day 1 are SUSE’s project manager Anja Stock’s about Bugzilla, FOSS community member Eleanor Chen, about Hands-on into Open Source Community, and Saurabh Sood, an engineer working with Unisys Corporation, about Programming with the Qt Framework.

Day 2 workshops include GNOME Foundation member Tong Hui’s discussion on Open Source Community Governance in China, Raghu Nayyar, an open-source Interaction Designer and Front-end Developer from India.givng a workshop on Build your First ownCloud App, and Meaglith Ma, founder of the Chinese community of Docker, providing a workshop about open platforms for distributing applications for developers and system administrators.

The summit gives attendees an opportunity to learn about related technologies and can help to unlock the large potiential of open source contributors and developers within Asia.

Interviews and recordings of openSUSE Asia Summit will be posted on SUSE’s YouTube, Youku and GooglePlus page.

HP, SUSE, Firefox, CODE, CSDN, BLUG, GNOME Summit, OwnCloud, BeiHang University and Beijing University all sponsored the event; openSUSE appreciates the companys’ contributions and willingness to make the first summit a success.

Members of the media are welcome to attend the summit and should email opensuse.asia@gmail.com.

Enjoy the Summit!

 


face

I want YOU!With less than three weeks from the release of our beloved green distro and the first release candidate already rocking, we can feel like we are almost there. This is exactly the right time to remember that there is still a lot of work to do and fun to have. Open source is awesome, but only as awesome as the people working on it. Nothing will happen unless YOU make it happen, so it’s time to get your hands dirty!

Testing

Every openSUSE release is tested using openQA, which saves developers from trivial and repetitive work. But in order to reach the quality level we all love from openSUSE stable releases much more testing is needed. We would like to test every single combination of hardware -from netbooks to supercomputers- and options -from default values to the most geeky weird configurations-. So please take a look to the online spreadsheet that has been created to organize the manual testing, read the instructions about coordinating the effort and hunt all those nasty bugs!

Celebrating awesomeness

We want to let the world know how awesome openSUSE 13.2 is. That means writing a public announcement, a features guide, a press kit, social messages… What do all those initiatives have in common? They are all based on the major features page at the openSUSE wiki. So please visit the wiki and add your favorite 13.2 feature to that page. What have you being working on since 13.1? What feature blew your mind when you saw it in action? Why were you waiting for that particular version of your favorite tool? If it’s not in the major features page, it didn’t happen.

Taking pictures

A picture is worth a thousand words. Release Candidate 1 already includes the final artwork for openSUSE 13.2, so it’s time to renew the screenshots in the corresponding openSUSE wiki page and to add new ones. You don’t even need to take the screenshots yourself, openQA is full of pictures you can grab. Say cheese!

Highlighting the strengths

The already mentioned announcement and features guide are both great to have a clear overview of what is coming with the new release. But those teams that have hit a major milestone in openSUSE 13.2 maybe want to ensure that the achievement is not lost in the stream of shiny new things. Before (and even after) every release we use to publish several sneak peaks focused on concrete highlights. Just think about a worthy topic you are familiar with (btrfs and snapper, desktop environments, xfs…) and the openSUSE Marketing Team will be glad to help you turning it into a nice article.

Documenting

Is always nice to have somebody to ask when you find a problem, but is even nicer if you have all the pitfalls and important changes documented in advance. That’s what our release notes are for. As explained by Karl in the Factory mailing list, the release notes are


Wednesday
15 October, 2014


Michael Meeks: 2014-10-15: Wednesday

21:00 UTCmember

face
  • Up early; mail chew, interesting breakfast with the Krita guy. Freshened up, met up with Eliane & Olivier, coach to the dam; got the booth setup; partner call. Lunch with Olivier; booth duty. Enjoyed the opening talks; back to the booth to re-charge. Out in the evening for dinner, kindly driven by Artur.

face

Following up on KDE’s announcement of the latest stable release, we have now packages available for 12.3 and 13.1 (a 13.2 repository will be made available after it is out). You will find them in the KDE:Current repository. Current users of this repository will get the new release automatically once they update.

Why you should upgrade? You can take a look at the list of changes to get an idea. These fixes touch many important KDE applications, including KMail, Okular and Dolphin.

Packages are also on their way to openSUSE Factory.

As usual, bugs with the packaging should be reported to openSUSE and upstream bugs should be reported to KDE.

Also, if you like what KDE is doing and you feel you can not contribute directly, you may want to support this end of year fundraiser.


Tuesday
14 October, 2014


Michael Meeks: 2014-10-14: Tuesday

21:00 UTCmember

face
  • Chewed some mail, great things going on while I'm asleep: seemingly I should sleep / wander off more often. Hacked a little on my backlog of things that need work.
  • Flight to FOZ, Brazil appears to be a lovely place; hacked on the flight, taxi to the hotel, hacked in the hotel at length - fun. Mail chew too; call with partner . Poked at tiled rendering foo until late; sleep.

face
2014IT鐵人賽-30-ACL


今天一樣使用 EasyCloud  雲端簡單龍的帳戶, 那就登入 https://gemini.nchc.org.tw/ 來開始練習openSUSE 基礎指令吧.


今天是鐵人賽的最後一天, 我們用 acl ( Access Control List ) 來達陣.


筆記部份:


ACL (Access Control List)
傳統的檔案權限針對的對象
  • 擁有者(owner)
  • 群組(group)
  • 其他(other)


倘若檔案或是資料夾的權限, 指定的方式超過三個以上
此時可以利用ACL 指定特定使用者/群組 所可以擁有的權限,來彌補傳統權限的不足


ACL(Access Control List)


  • 在file system 上面必須設定 acl的選項
  • 可以使用 setfacl 設定ACL
    • -m 編輯ACL設定
    • -x 移除單項 ACL 設定
    • -b 移除所有 ACL 設定
    • -d 設定Default ACL
    • -M 還原ACL設定
  • 可以使用 getfacl 觀察ACL設定


-rwxrw-r--+ 1 root users 0 2008-06-21 11:27 test
當設定ACL, 中間的 4-6的bit 就非原本的群組權限, 而是acl mask
  • acl mask --> 特定使用者或是特定群組可以使用的最大權限
  • default acl --> 針對資料夾設定default acl其子資料夾檔案可以繼承設定的acl



開始練習吧
Lab: Access Control List <ACL>

#mount |  grep   sda <請觀察資訊, 是否有acl>

#mkdir  /acl
#touch  /acl/test
#echo  "echo 1234"  >>  /acl/test
#chmod  700  /acl/test

#ls -l /acl
#su - max   -c "cat /acl/test" <以使用者max身份查看檔案>失敗
#su - john  -c "cat /acl/test" <以使用者john身份查看檔案>失敗

#getfacl  /acl/test <查看test資訊>
#setfacl -m  u:max:r /acl/test <設定acl, -m 編輯, FIELD:NAME:PERM>
#ls -l  /acl
#getfacl  /acl/test <查看test資訊>

#su - max  -c "cat /acl/test" <以使用者max身份查看檔案>成功
#su - john -c "cat /acl/test" <以使用者john身份查看檔案>失敗

#setfacl -x u:max /acl/test <設定acl, -x 移除, FIELD:NAME>
#ls -l   /acl
#getfacl  /acl/test
#setfacl -b  /acl/test <移除所有的ACL設定>
#ls -l  /acl

-------------------------------------------------------------------------

練習 acl mask

#ls -l  /acl
#chgrp users /acl/test
#chmod 764 /acl/test
#ls -l  /acl <請觀察資訊>
#su - max  -c "cat /acl/test" <以使用者max身份查看檔案>成功
#su - john -c "cat /acl/test" <以使用者john身份查看檔案>成功
#su - max  -c "/acl/test" <以使用者max身份執行檔案>失敗
#su - john -c "/acl/test" <以使用者john身份執行檔案>失敗
#ls -l  /acl
#setfacl -m user:john:rwx /acl/test
#ls -l  /acl <請觀察資訊,此時顯示的是ACL MASK>
#su - max  -c "/acl/test" <以使用者max身份執行檔案>失敗
#su - john -c "/acl/test" <以使用者john身份執行檔案>成功

#getfacl  /acl/test
#setfacl -m mask::r-- /acl/test <設定acl maskr-->
#getfacl  /acl/test

#su - john -c "/acl/test" <以使用者john身份執行檔案失敗,因受到acl mask 的限制>


-------------------------------------------------------------------------


練習 default acl

#mkdir /acl/dir
#setfacl -d -m u:john:rwx /acl/dir/ <設定default acl>
#getfacl /acl/dir/ <請觀察資訊>

#touch /acl/dir/test
#ls -l /acl/dir/ <請觀察資訊>

#getfacl /acl/dir/test <請觀察資訊>
#mkdir /acl/dir/john <請觀察資訊>

#ls -l /acl/dir/ <請觀察資訊>
#getfacl /acl/dir/john/ <請觀察資訊>




Fun with Day 30 ~

Older blog entries ->