RE: xfs and acl > inherit permissions (acl)

["Kaplan, Marc" <mkaplan@snapserver.com>]

You need to set the default or inheritance ACLs on the /home/hugo directory.
This can be probably be done using setfacl, but I am more familiar with
chacl.

You can use chacl -B to set both the object ACL and the default
(inheritance) ACL.
To accomplish what you want, you have to do something like this:

chacl -B u::rwx,g::r-x,o:---,u:paul:r-x,u:hugo:rwx,g:admins:rwx
u::rwx,g::r-x,o:---,u:paul:r-x,u:hugo:rwx,g:admins:rwx

So the first entry (before the space) applies to the object itself, and the
second (after the space) applies to inheritance.

If in doubt, look at the man pages for chacl and setfacl.

Cheers,
			-Marc

-----Original Message-----
From: Hugo Lafargue [mailto:secure@ieak.net]
Sent: Thursday, March 21, 2002 7:30 AM
To: linux-xfs@oss.sgi.com
Subject: xfs and acl > inherit permissions (acl) 


Hi,

I have a linux with a 2.4.14 xfs patched kernel.
ACL are working as it should do I guess...

but i have an issue with files created by root logged in a console (this is
an example...)

here is the acl of the directory /home/hugo

$ getfacl /home/hugo
#file: /home/hugo
#owner: hugo
#group: admins
user::rwx
user:paul:r-x
user:hugo:rwx
group::r-x
group:admins:rwx
mask::rwx
other::---

if i understand correctly how acl works,
- the user 'hugo' as Read-Write-Execute rights,
- the user 'paul' as Read-Execute rights,
- members of the 'admins' group have Read-Write-Execute rights,
- access to this directory is forbidden for other users
Am I right or wrong ? tell me...

well, if I create a test file with 'touch /home/hugo/test' :
$ getfacl /home/hugo/test
# file: test
# owner: root
# group: root
user::rw-
group::r--
other::r--

Argh ! I would like the file to inherit its default permissions, and the acl
from the parent directory !
is it possible ?? if yes, could you explain me how to do such a thing ?

Thanks.

Hugo.