From owner-freebsd-hackers@FreeBSD.ORG Sat May 16 11:01:27 2015 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 5482F29C for ; Sat, 16 May 2015 11:01:27 +0000 (UTC) Received: from puchar.net (puchar.net [188.252.31.250]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "puchar.net", Issuer "puchar.net" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id D511617C7 for ; Sat, 16 May 2015 11:01:26 +0000 (UTC) Received: Received: from 127.0.0.1 (localhost [127.0.0.1]) by puchar.net (8.14.9/8.14.9) with ESMTP id t4GAcYa6006158 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for ; Sat, 16 May 2015 12:38:34 +0200 (CEST) (envelope-from wojtek@puchar.net) Received: from laptop.wojtek.intra (localhost [127.0.0.1]) by laptop.wojtek.intra (8.14.9/8.14.9) with ESMTP id t4GAcahr000814 for ; Sat, 16 May 2015 12:38:36 +0200 (CEST) (envelope-from wojtek@puchar.net) Received: from localhost (wojtek@localhost) by laptop.wojtek.intra (8.14.9/8.14.9/Submit) with ESMTP id t4GAcUsQ000811 for ; Sat, 16 May 2015 12:38:31 +0200 (CEST) (envelope-from wojtek@puchar.net) X-Authentication-Warning: laptop.wojtek.intra: wojtek owned process doing -bs Date: Sat, 16 May 2015 12:38:30 +0200 (CEST) From: Wojciech Puchar X-X-Sender: wojtek@laptop.wojtek.intra To: freebsd-hackers@freebsd.org Subject: unionfs/nullfs Help please Message-ID: User-Agent: Alpine 2.20 (BSF 67 2015-01-07) MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (puchar.net [10.0.1.1]); Sat, 16 May 2015 12:38:35 +0200 (CEST) X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 16 May 2015 11:01:27 -0000 what i need: i have a directory "/home/administration" with files belonging to group say "bosses". I've added say "john" and "bill" to group bosses. Now bosses can read and write in /home/administration. Now i want mark, anne and tom to be able to read data from /home/administration but not write. Others should not be able to do access it at all. So i created group "administration-read" and added mark,anne and tom to it. Now i wanted using nullfs or unionfs to clone /home/administration to say /nullfs/administration-read so it will be read only (no problem) but gid of files would be changed to administration-read. Tried multiple things, to no avail. Seems i don't really understand manuals ;) Any help how to do it this way or other way (but no ACLs please)?