From owner-freebsd-fs@FreeBSD.ORG Mon Dec 6 22:34:55 2010 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 759061065670; Mon, 6 Dec 2010 22:34:55 +0000 (UTC) (envelope-from joe@netmusician.org) Received: from mail.netmusician.org (dorian.netmusician.org [66.244.95.101]) by mx1.freebsd.org (Postfix) with ESMTP id 43FC38FC18; Mon, 6 Dec 2010 22:34:54 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netmusician.org (Postfix) with ESMTP id 2BF7EB8C8; Mon, 6 Dec 2010 17:34:54 -0500 (EST) X-Virus-Scanned: amavisd-new at netmusician.org Received: from mail.netmusician.org ([127.0.0.1]) by localhost (dorian.netmusician.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id VGML-MjcKVkI; Mon, 6 Dec 2010 17:34:53 -0500 (EST) Received: from Shakti.local (c-71-201-100-167.hsd1.in.comcast.net [71.201.100.167]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by mail.netmusician.org (Postfix) with ESMTPSA id 3D72DB8C2; Mon, 6 Dec 2010 17:34:53 -0500 (EST) Message-ID: <4CFD6506.7090901@netmusician.org> Date: Mon, 06 Dec 2010 17:34:46 -0500 From: Joe Auty User-Agent: Postbox 2.0.2 (Macintosh/20101025) MIME-Version: 1.0 To: =?UTF-8?B?RWR3YXJkIFRvbWFzeiBOYXBpZXJhxYJh?= References: <1124305635.1255931.1291670668724.JavaMail.root@erie.cs.uoguelph.ca> <4CFD5D73.1050601@netmusician.org> In-Reply-To: X-Enigmail-Version: 1.1.2 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-fs@freebsd.org Subject: Re: Migrating from NFSv3 to v4 - NFSv4 ACL/permission confusion X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Dec 2010 22:34:55 -0000 Edward Tomasz Napiera=C5=82a wrote: > Wiadomo=C5=9B=C4=87 napisana przez Joe Auty w dniu 2010-12-06, o godz. = 23:02: >> Rick Macklem wrote: >>> I don't know anything about ZFS, but you could try getfacl/setfacl on= the >>> client and see what happens? >>> >>> Edward Napierala (trasz@freebsd.org) did commit a recent change w.r.t= . >>> NFSv4 ACLs and I remember the discussion saying something like "after >>> this change, chmod no longer does anything once ACLs are enabled, but= I >>> have no idea if it is relevant. > > Erm, no. There is a change in the queue that will change chmod behavio= ur > wrt. ACLs, but 1. it's not committed yet, and 2. chmod will continue to > work. > >>> Also, make sure "ls -l" is not reporting "nobody". If the user/group >>> name mapping isn't working, most Setattr Ops will fail. >>> >>> rick >>> >> Thanks Rick, >> >> I will look into this, but for the benefit of my own education, are >> NFSv4 ACLs supposed to be intertwined or separate from standard Unix >> permissions? I'm confused as to how the ACLs have changed from v3, or = if >> this is even relevant to my problem not really knowing how they work a= nd >> why they are needed :) > > Both POSIX.1e and NFSv4 ACLs are similar in that they both influence > the mode, and get influenced by it. In other words, when you change > the ACL, the mode gets updated; when you change the mode, the ACL gets > updated. Also, for both POSIX.1e and NFSv4 ACLs, file mode continues > to work as usual if you ignore the ACL part. > Thanks for this! So, if I want to just ignore the NFSv4 ACLs on account of not needing anything beyond the POSIX ACLs, I'm free to do so without consequence... Correct? > Good introduction might be the setfacl(1) manual page. > > -- > If you cut off my head, what would I say? Me and my head, or me and my= body? > --=20 Joe Auty, NetMusician NetMusician helps musicians, bands and artists create beautiful, professional, custom designed, career-essential websites that are easy to maintain and to integrate with popular social networks. www.netmusician.org joe@netmusician.org