[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: default acl on directory problem
Hi Thomas,
On Fri, Mar 22, 2002 at 03:42:39PM +0100, Thomas Winkler wrote:
> i am using xfs enabled kernel 2.4.16 and tools. acl seems to work
> properly, except me having a hard time setting correct default acls on a
> directory. after setting acls on a directory (chacl and setfacl) it looks
> like this:
> # file: .
> # owner: cvs
> # group: cvs-misc
> user::rwx
> group::rwx
> other::---
> mask::rwx
> group:cvs-misc:rwx
> default:user::rwx
> default:group::rwx
> default:other::---
> default:mask::rwx
> default:group:cvs-misc:rwx
> this seems to work for all users in the cvs-misc group. when a create a
> file as user all other users of cvs-misc have read and write
> permissions. when i create a directory as another user (not cvs) i get
> something like the following:
> # file: .
> # owner: [otheruser]
> # group: [otherprimarygroup]
> user::rwx
> group::rwx #effective:r-x
> other::---
> mask::r-x
> group:cvs-misc:rwx #effective:r-x
> default:user::rwx
> default:group::rwx
> default:other::---
> default:mask::rwx
> default:group:cvs-misc:rwx
> why do i have effective r-x permissions for group access? shouldn't it
> be rwx, or am i missing something?
>
Looking at getfacl(1), the "#effective" comment refers
to the effect the mask ACE has on all groups and named user
ACEs whose permissions are reduced.
In your case, your mask ACE is "r-x" so this will
potentially reduce permissions for group and named-user ACEs.
I guess the comment is there as a reminder of what the mask ACE is doing.
So did you have a different command to set the acl for "otheruser"
which had a different mask ACE ???
BTW, general userland ACL questions are best sent to
acl-devel@bestbits.at (check out: http://acl.bestbits.at/)
now that we're using common userspace code for ext2, ext3 and XFS.
Cheers,
--Tim