From owner-freebsd-hackers@FreeBSD.ORG Sat Apr 12 05:09:56 2008 Return-Path: Delivered-To: hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D4937106564A; Sat, 12 Apr 2008 05:09:56 +0000 (UTC) (envelope-from kientzle@freebsd.org) Received: from kientzle.com (h-66-166-149-50.snvacaid.covad.net [66.166.149.50]) by mx1.freebsd.org (Postfix) with ESMTP id C4F828FC20; Sat, 12 Apr 2008 05:09:56 +0000 (UTC) (envelope-from kientzle@freebsd.org) Received: from [10.0.0.128] (p54.kientzle.com [66.166.149.54]) by kientzle.com (8.12.9/8.12.9) with ESMTP id m3C59utv041448; Fri, 11 Apr 2008 22:09:56 -0700 (PDT) (envelope-from kientzle@freebsd.org) Message-ID: <48004424.3080403@freebsd.org> Date: Fri, 11 Apr 2008 22:09:56 -0700 From: Tim Kientzle User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.12) Gecko/20060422 X-Accept-Language: en-us, en MIME-Version: 1.0 To: infofarmer@freebsd.org References: <20080410192552.GC81939@amilo.cenkes.org> <47FEF166.6060606@freebsd.org> <20080411052305.GE81939@amilo.cenkes.org> In-Reply-To: <20080411052305.GE81939@amilo.cenkes.org> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: hackers@freebsd.org Subject: Re: mtree acl [patch] X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2008 05:09:56 -0000 >>Could you give an example of a short mtree file that includes ACLs? > > Here, the parent dir and "file" have ACLs, "kk" doesn't. I > considered "acl=none" for ACL-less files, but I think it'll > produce more problems than use cases. > > # . > /set type=file > . type=dir \ > acl=user::rwx,user:root:rwx,group::r-x,mask::rwx,other::r-x > file acl=user::rw-,group::r--,group:wheel:rwx,mask::rwx,other::r-- > kk acl=user::rw-,group::r--,other::r-- > .. 'kk' here should not have an 'acl' keyword at all. Just omit it. If someone specifies 'acl' keyword and not 'mode' keyword, then its because they only want to see extended ACL information. Tim Kientzle