Detailed view of WordPress with ACLs.
Users and Groups
| User Name | Assigned User | Group | High Level Access |
|---|---|---|---|
| dailyplanet01 | Clark Kent | wgdailyplanet | Access to Daily Planet website and blog files. |
| lexcorp01 | Lex Luthor | wglexcorp | Access to LexCorp website and blog files. |
| tin.pham | Tin Pham | staff | Read access to all websites and blogs |
| acme01 | Bugs Bunny | wgacme | No access |
Setup Groups and Users
... to fill in...
Permission and Group Structure
We want to provide website hosting for two different clients, The Daily Planet and LexCorp. Employees from the respective companies will belong in the system under the following groups, wgdailyplanet and wglexcorp. Here is the top level structure,
| User Name | Assigned User | Group | Web Root Directory | File Access | Directory Access |
|---|---|---|---|---|---|
| dailyplanet01 | Clark Kent | wgdailyplanet | /opt/web/php/dailyplanet.com/ | Read, Write and Execute | Read, Write and Execute |
| lexcorp01 | Lex Luthor | wglexcorp | /opt/web/php/lexcorp.com/ | Read, Write and Execute | Read, Write and Execute |
| Apache Server | www-data | /opt/web/php/dailyplanet.com/ /opt/web/php/lexcorp.com/ | Read | Read and Execute (required to transverse directories) | |
| Other | No Access | No Access |
Setup Directories
... to fill in...
Test Regular Permission
Testing results of regular permission on /opt/web/,
| # | User Name | Test Case | Test Run | Result |
|---|---|---|---|---|
| 01 | tin.pham
lexcorp01 acme01 | Verify user and groups | id uid=2000(tin.pham) gid=50(staff)... groups staff adm sudo su - dailyplanet01 groups wgdailyplanet exit sudo su - lexcorp01 groups wglexcorp exit sudo su - acme01 groups wgacme |
|
| 02 | tin.pham | Show permissions | cd /opt ls -al drwxr-x--x 3 serveradmin staff 4096 Mar 28 20:35 web cd web ls -al drwxr-x--x 2 serveradmin staff 4096 Apr 17 19:57 php |  |
| 03 | dailyplanet01 |
...