I’m sure this has been asked and answered before, but I can’t find it. So here goes.
I have created a domain “my_domain.com” and assigned it to user “user_one”. The file hierarchy looks like this:
(We’ll call this the “domain dir” from now on.)
I want “user_two” to be able to maintain the domain dir, without giving him access to other directories and files owned by “user_one”, such as /home/user_one/Maildir/. So sharing the “user_one” credentials probably won’t cut it.
So I created a group called “mdadmin” and added both users to this group. Then I changed the group for the domain dir to “mdadmin”, and set the sticky bit. So far so good…“user_two” can establish shell access and navigate to the domain dir using a symbolic link that I thoughtfully placed in /home/user_two/; “user_two” can create, edit, and delete files in the domain dir.
Of course you see where this is going. This works fine until “user_two” needs to upload files. The symbolic link doesn’t work in FTP, and “user_two” is unable to navigate to the domain dir.
I suppose I could instruct “user_two” to upload files to his own directory and then establish a shell connection and copy them to the domain dir. But “user_two” isn’t very Unix-savvy.
Am I taking a completely wrong approach here? What should my solution be?