Hello,
it seems that getfacl is missing default access *sometimes*.
What I did:
[root@file1 Controlling]# getfacl _netm/
# file: _netm
# owner: root
# group: root
user::rwx
group::r-x
other::---
[root@file1 Controlling]# setfacl -d -m g:group2:rwx _netm/
[root@file1 Controlling]# getfacl _netm/
# file: _netm
# owner: root
# group: root
user::rwx
group::r-x
other::---
default:user::rwx
default:group::r-x
default:group:group2:rwx
default:mask::rwx
default:other::---
[root@file1 Controlling]# setfacl -d -m g:group1:rx _netm/
[root@file1 Controlling]# getfacl _netm/
# file: _netm
# owner: root
# group: root
user::rwx
group::r-x
other::---
default:user::rwx
default:group::r-x
default:group:group1:r-x
default:mask::rwx
default:other::---
[root@file1 Controlling]# chacl -l _netm/
_netm/
[u::rwx,g::r-x,o::---/u::rwx,g::r-x,g:group1:r-x,g:group2:rwx,m::rwx,o::---]
[root@file1 Controlling]#
As you can see with chacl the default for the group group2 is
there, however not beeing displayed by getfacl. The curious thing is, that
when I add another group to the default list it get's displayed properly:
[root@file1 Controlling]# setfacl -d -m g:group3:rwx _netm/
[root@file1 Controlling]# getfacl _netm/
# file: _netm
# owner: root
# group: root
user::rwx
group::r-x
other::---
default:user::rwx
default:group::r-x
default:group:group1:r-x
default:group:group2:rwx
default:group:group3:rwx
default:mask::rwx
default:other::---
I understand that the effective rights aren't being displayed, however you
might consider changing this behaviour, since it's pretty confusing. One has
to use --all-effective to display full rights.
Please keep me in CC since I'm not subscribed to this list.
--
Regards,
Wiktor Wodecki
|