Quoting Gilles Schipper <[log in to unmask]>:

> At 06:06 PM 2007-11-12, Reggie Monroe wrote:
> Is there a way to restrict a user to only write to a certain group?
>
> Yes.
>
> The simplest way would be to define the group to be the user's home
> group, give the user GL capability, and modify the group as  follows:
>
> altgroup group;access=(r,l,x,w,a,s:GU)
>
> Other groups in the account may need to have its access attributes
> modified to prevent non-am users from write access.
>
> A user only has GL capability if both of 2 conditions are true:
>
> 1. the user has GL capability
> 2. the user is logged on to his/her home group.
>-------------------------------------------------------------------
> Gilles Schipper
> GSA Inc.
> HP System Administration Specialists
> 300 John Street, Box 87651   Thornhill, ON Canada L3T 7R4
> Voice: 905.889.3000     Fax: 905.889.3001
> email:  [log in to unmask]  web: http://www.gsainc.com

Actually you need to go a little more restrictive on the group access rights.
ACCESS=(R,W,A,L,X,S:GL) should get it. The GU setting will let anyone that logs
in that group to write, but the GL setting will allow the user with GL
capability.

The problem still remains someone with AM can log into that group and change or
create files in that group. You could add a password for the group.

Your user that you want to specify for that group's GL will need GL, UV (if the
group and account are on a user volume set) ND, SF and IA at a minimum.

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *