|
⇤ ← Revision 1 as of 2007-10-25 03:32:27
Size: 1429
Comment: Initial contents
|
Size: 1460
Comment: No section numbers
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 1: | Line 1: |
| #pragma section-numbers off |
This page contains some examples on how to solve common problems with AFS.
Making a directory private
If you wish to make a directory within your $HOME completely private so that only you can list, read, and write, do this:
mkdir ~/private fs setacl -clear ~/private <USERNAME> all
Note that the -clear option causes any previously set ACLs to be removed. The <USERNAME> all part sets full access to the directory's contents to the specified user. Therefore, if you have a directory in your home directory that you wish to make only accessible to you (such as ~/.ssh or ~/documents), use:
fs setacl -clear ~/<DIRECTORY> <USERNAME> all.
Serving a website with added privacy
If you use domtool to set up your domain, there is a way to allow system:anyuser only to list the contents of public_html without breaking your website(s). By default ACLs R and L are given. Change that in this way:
fs setacl ~/public_html system:anyuser l
Now, add all permissions for the USER.daemon principle:
fs setacl ~/public_html <USERNAME>.daemon all
Be aware that this only works if you use your own domain -- if you use http://deleuze.hcoop.net/~USERNAME to serve your files, then you must be sure that system:anyuser can read ~/public_html and its subdirectories.