acl group permissions
camelia
camelia.botez at weizmann.ac.il
Mon Jul 12 10:51:04 IDT 2010
We need a mechanism to give r/w access to all users belonging to bioserv group ( only to this group) to all files/directories of other users belonging to different groups without changing the structure of directories.
# file: ngs
# owner: bsgilgi
# group: bioserv
user::rwx
group::rwx
group:bioserv:rwx
mask::rwx
other::r-x
default:user::rwx
default:group::rwx
default:group:bioserv:rwx
default:mask::rwx
default:other::r-x
# file: ngs/user_data
# owner: esterf
# group: nobody
user::rwx
group::rwx
group:bioserv:rwx
mask::rwx
other::r-x
We tried to create acl for file system /ngs and we saw that we cannot "use" It in our purpose so we created an extra acl for sub dir /ngs/user_data.
What we need still doesn't work.
We consulted a lot of times the acl man pages and not only and we believe that we do what it should be done.
Why doesn't work ?
-----Original Message-----
From: oleg at goldshmidt.org [mailto:oleg at goldshmidt.org] On Behalf Of Oleg Goldshmidt
Sent: Sunday, July 11, 2010 3:36 PM
To: camelia
Cc: linux-il at cs.huji.ac.il
Subject: Re: acl group permissions
Hmm... Maybe someone will be able to help you on the basis of the
information you provided, but I'd suggest you give some more details.
> We created for an already existing file system acl looking like this:
First, I assume you remounted the filesystem with ACL support (just
sanity-checking, no offence meant). I suggest you include the output
of mount and/or the relevant part of /etc/fstab.
> We want to know why the permissions for group bioserv are not inherited on
> subdirectories ( only on the new created directories under group bioserv)
This does not seem surprising: "man acl" says that "the access ACL of
a file object is initialized when the object is created..."
> and why users from bioserv group cannot r/w files in other users
> directories?
Can you include the output of "ls -ld" and "getfacl" for directories
that exhibit problems? Just an example? For both "other users'
directories" and "inheritance problems"?
--
Oleg Goldshmidt | pub at goldshmidt.org
More information about the Linux-il
mailing list