Trustees is an advanced linux permission system inspired by Netware. It allows a system administrator to attach "trustees" to any directory or file. All subdirectories and files in that directory will also inherit these trustees. Trustee rights can be overridden or added to in subsequent directories.

Why not use POSIX ACLs? POSIX ACLs are useful, but require intricate scripts to maintain some sort of recursive ACL scheme. Furthermore, the tools to just analyze which ACLs are set where are also equally intricate. ACLs are designed for fine-grained access control. For example, on my system, giving a user write access to all files and directories in usr would require over 140,000 acls to be set. Furthermore, how do you check that all these ACLs are what you intended them to be? Quite frankly, you can't. Enter trustees. Specify your full system's rights in one small config file and know that your controls on access are what you intended them to be.

There is more information available below, but if you have any questions, feel free to tell me and I'll see if more clear/better documentation is in order.

The content on this site is Copyright © 2005 by Andrew Ruder unless otherwise noted. Logo Valid XHTML 1.0! Valid CSS!