From owner-freebsd-questions@FreeBSD.ORG  Wed Jun 30 00:47:21 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1181D16A4CE
	for <freebsd-questions@freebsd.org>;
	Wed, 30 Jun 2004 00:47:21 +0000 (GMT)
Received: from blair.epifora.com (blair.epifora.com [207.139.168.98])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C2ED443D54
	for <freebsd-questions@freebsd.org>;
	Wed, 30 Jun 2004 00:47:20 +0000 (GMT)
	(envelope-from drvince@anonymnet.net)
Received: from localhost (localhost.epifora.com [127.0.0.1])
	by blair.epifora.com (Postfix) with ESMTP id D97D8165935
	for <freebsd-questions@freebsd.org>;
	Tue, 29 Jun 2004 20:47:38 -0400 (EDT)
Received: from mail.anonymnet.net ([205.205.52.19])
 by localhost (blair.epifora.com [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 25798-02 for <freebsd-questions@freebsd.org>;
 Tue, 29 Jun 2004 20:47:37 -0400 (EDT)
Received: from mail.anonymnet.net (mail.anonymnet.net [205.205.52.19])
	by mail.anonymnet.net (Postfix) with ESMTP id 3034F165939
	for <freebsd-questions@freebsd.org>;
	Tue, 29 Jun 2004 20:47:37 -0400 (EDT)
From: "DrVince" <drvince@anonymnet.net>
To: "freebsd-questions" <freebsd-questions@freebsd.org>
Date: Tue, 29 Jun 2004 19:47:36 -0500
Message-Id: <20040630003738.M60971@anonymnet.net>
X-Mailer: Open WebMail 2.30 20040131
X-OriginatingIP: 205.205.52.19
MIME-Version: 1.0
Content-Type: text/plain;
	charset=iso-8859-1
Subject: Smarter ACL
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Jun 2004 00:47:21 -0000

Hi,
is there a way to make ACL smarter about mkdir?

When I set the default on a directory, it works fine and the files in it gets 
the right perms.  But the subdirectories doesn't get their execution perms.  So 
those dirs are unusable.

My standard commands for user's web roots (Apache running under www:www):
setfacl -d -m u::rw-,g::r--,o::---,g:www:r--,g:staff:r--,g:wheel:rw- www/
setfacl -m u::rwx,g::r-x,o::---,g:www:r-x,g:staff:r-x,g:wheel:rwx www/
setfacl -m u::rw-,g::r--,o::---,g:www:r--,g:staff:r--,g:wheel:rw- www/*
setfacl -m u::rw-,g::r--,o::---,g:www:r--,g:staff:r--,g:wheel:rw- www/.ht*

DrVince