Date: Tue, 31 Aug 2010 15:09:10 -0400 From: =?ISO-8859-1?Q?Francis_Dub=E9?= <francis@optiksecurite.com> To: freebsd-questions@freebsd.org Subject: ACLs inheritance problem Message-ID: <4C7D5356.9030101@optiksecurite.com>
next in thread | raw e-mail | index | archive | help
Hi list,
Here's my case. We have 3 web developpers creating files and folders in
our main "web" folder. We would like to setup ACLs allowing them to
modify each others file. So this is what I'm doing :
# mkdir web
#setfacl -d -m u::rwx,g::rwx,o::rx,g:web:rwx web
# setfacl -m u::rwx,g::rwx,o::rx,g:test1:rwx web
# getfacl -d web
# file: web
# owner: root
# group: wheel
user::rwx
group::rwx
group:web:rwx
mask::rwx
other::r-x
# getfacl web
# file: web
# owner: root
# group: wheel
user::rwx
group::rwx
group:web:rwx
mask::rwx
other::r-x
Now, when I create a subfolder or a file in the "web" folder, I would
expect them to have theses ACLs.
# mkdir web/subfolder
# touch web/file
# getfacl web/file
# file: web/file
# owner: root
# group: wheel
user::rw-
group::rwx # effective: r--
group:web:rwx # effective: r--
mask::r--
other::r--
# getfacl web/subfolder
# file: web/subfolder
# owner: root
# group: wheel
user::rwx
group::rwx # effective: r-x
group:web:rwx # effective: r-x
mask::r-x
other::r-x
Where is that new mask coming from ? Shouldn't it be the same as the
default mask from it's parent directory ? I need the new files to be
writable by the "web" group by default, am I missing something ?
We are using FreeBSD 8.1 Released on AMD64.
Any pointer would be appreciated, thanks a lot.
Francis Dubé
.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4C7D5356.9030101>