[userv-utils] / groupmanage / groupmanage.text

groupmanage(1) and user-administered groups
-------------------------------------------

There is a program `groupmanage' installed on chiark, with which users
can create their own groups and change their group membership.

For a synopsis of its usage, type `groupmanage'.

Each group managed by groupmanage has an entry in /etc/grouplist as
well as in /etc/group.  This contains the administrative information
which controls who may do what to the group.

Each group has a single owner user.  The owner and managers are
allowed to add and delete managers and members; only the owner may
change the group title.  Note that being a manager doesn't
automatically make you a member of a group - you must use
groupmanage --add to do that, and then log in again to ensure that the
new membership affects your session.

There are some restrictions on groups created by users without my
intervention: the group name must have the form
<username>-<groupname>, except that if <username> is more than 4
characters only the first 4 need be given.  All groups created by a
user have that user's name in the title.  Any one user may not create
more than 5 groups for themselves.

All group names must be less than 8 characters long, and a group once
created can not easily be deleted (though it can be renamed with my
assistance).

For more formal groups (for example, those corresponding to particular
organisations, or which interact with system software eg mail
delivery) I will usually create a the group myself on request (and
need not heed these restrictions), and will often also create a home
directory for shared files.

When working with shared files, you should not remove (and should
reinstate, if necessary) the setgid bit on the shared directories, and
leave your umask set to allow group write (the default is 002).
You'll then find that you're able to work in group filespace areas
without having to ask other users to chmod files, or having to type
incantations to switch between working on shared files and your
personal files.

 -- iwj 19.08.1998
Commit	Line	Data
7bda9154	1	groupmanage(1) and user-administered groups
	2	-------------------------------------------
	3
	4	There is a program `groupmanage' installed on chiark, with which users
	5	can create their own groups and change their group membership.
	6
	7	For a synopsis of its usage, type `groupmanage'.
	8
	9	Each group managed by groupmanage has an entry in /etc/grouplist as
	10	well as in /etc/group. This contains the administrative information
	11	which controls who may do what to the group.
	12
	13	Each group has a single owner user. The owner and managers are
	14	allowed to add and delete managers and members; only the owner may
	15	change the group title. Note that being a manager doesn't
	16	automatically make you a member of a group - you must use
	17	groupmanage --add to do that, and then log in again to ensure that the
	18	new membership affects your session.
	19
	20	There are some restrictions on groups created by users without my
	21	intervention: the group name must have the form
	22	<username>-<groupname>, except that if <username> is more than 4
	23	characters only the first 4 need be given. All groups created by a
	24	user have that user's name in the title. Any one user may not create
	25	more than 5 groups for themselves.
	26
	27	All group names must be less than 8 characters long, and a group once
	28	created can not easily be deleted (though it can be renamed with my
	29	assistance).
	30
	31	For more formal groups (for example, those corresponding to particular
	32	organisations, or which interact with system software eg mail
	33	delivery) I will usually create a the group myself on request (and
	34	need not heed these restrictions), and will often also create a home
	35	directory for shared files.
	36
	37	When working with shared files, you should not remove (and should
	38	reinstate, if necessary) the setgid bit on the shared directories, and
	39	leave your umask set to allow group write (the default is 002).
	40	You'll then find that you're able to work in group filespace areas
	41	without having to ask other users to chmod files, or having to type
	42	incantations to switch between working on shared files and your
	43	personal files.
	44
	45	-- iwj 19.08.1998