From 185ac79c6babec95b6ae6aea52bfc05e65c0aa15 Mon Sep 17 00:00:00 2001 From: LTLA Date: Tue, 17 Sep 2024 16:26:47 -0700 Subject: [PATCH] Mention that we should set the sticky bit on the staging directory. This prevents users from deleting each other's request/upload files. --- README.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 5d96a54..4e183e3 100644 --- a/README.md +++ b/README.md @@ -336,12 +336,13 @@ cd gobbler && go build Then, set up a staging directory with global read/write permissions. All parent directories of the staging directory should be at least globally executable. +We enable the sticky bit so that users do not interfere with each other when writing request files or creating upload directories. We also recommend setting up file access control lists if these are available, -as this ensures that all user-created temporary files and upload directories can be eventually deleted by the Gobbler's automatic clean-up. +as this ensures that all user-created content in the staging directory can be eventually deleted by the Gobbler. ```bash mkdir STAGING -chmod 777 STAGING +chmod 1777 STAGING # 1 for the sticky bit setfacl -Rdm u:SERVICE_NAME:rwx STAGING ```