From owner-freebsd-fs@FreeBSD.ORG Mon Dec 18 14:08:06 2006 Return-Path: X-Original-To: freebsd-fs@freebsd.org Delivered-To: freebsd-fs@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 3E58116A407; Mon, 18 Dec 2006 14:08:06 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from smtp1.yandex.ru (smtp1.yandex.ru [213.180.223.87]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3512C43CA0; Mon, 18 Dec 2006 14:08:04 +0000 (GMT) (envelope-from bu7cher@yandex.ru) Received: from ns.kirov.so-cdu.ru ([81.18.142.225]:58631 "EHLO [127.0.0.1]" smtp-auth: "bu7cher" TLS-CIPHER: "DHE-RSA-AES256-SHA keybits 256/256 version TLSv1/SSLv3" TLS-PEER-CN1: ) by mail.yandex.ru with ESMTP id S2079203AbWLRNue (ORCPT + 1 other); Mon, 18 Dec 2006 16:50:34 +0300 X-Comment: RFC 2476 MSA function at smtp1.yandex.ru logged sender identity as: bu7cher Message-ID: <45869C9A.8090405@yandex.ru> Date: Mon, 18 Dec 2006 16:50:18 +0300 From: "Andrey V. Elsukov" User-Agent: Mozilla Thunderbird 1.5 (FreeBSD/20051231) MIME-Version: 1.0 To: Nico -telmich- Schottelius References: <20061202120228.GB27796@schottelius.org> In-Reply-To: <20061202120228.GB27796@schottelius.org> Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-fs@freebsd.org, Robert Watson Subject: Re: ACL broken on all FreeBSD variants X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Dec 2006 14:08:06 -0000 Nico -telmich- Schottelius wrote: > Just choosed that provocant topic, because there seem to be no > reaction on all the reports I send about FreeBSD ACLs. > > Just wanted to know, whether anyone REALLY uses ACLs with default > entries. If so, does it really work with creating new files? Look here: http://www.freebsd.org/cgi/man.cgi?query=setfacl&sektion=1&apropos=0&manpath=FreeBSD+6.1-RELEASE ... -d The operations apply to the default ACL entries instead of access ACL entries. Currently *only directories* may have default ACL's. ... And here: http://www.onlamp.com/lpt/a/6185 ... Directories are more complex, as they can have up to three types of ACLs: * An access ACL affects access to the directory itself. * The default directory ACL sets the default permissions on any subdirectories created within the directory. * The default access ACL sets the default permissions on any files created within the directory. Note that if the default directory ACL is not set, subdirectories will also inherit this ACL. However, if the default directory ACL is set, that value will override the value of this ACL. The current FreeBSD implementation supports *only the first two types* of directory ACLs, so double-check the effective permissions on any files you create in directories containing ACLs. ... -- WBR, Andrey V. Elsukov