[Acl-Devel] Behaviour of 'file group' acl entries
Kevin Shanahan
kmshanah at ucwb.org.au
Thu Apr 20 05:03:58 CEST 2006
On Thu, 2006-04-20 at 10:35 +0930, Kevin Shanahan wrote:
> Yes, it makes sense when you put it like that. I was trying to test
> Samba's behaviour with the 'acl group control' option when the file
> group had no write access. It looks like it's not possible to have the
> file group with less access than any ACL_USER or ACL_GROUP entries.
> Thanks for the clarification.
Just following up to myself here in case somebody comes back and reads
this and gets the wrong idea.
I see now (after actual testing) that of course it is possible for the
ACL_GROUP_OBJ entry to have r-x permissions while another ACL_GROUP or
ACL_USER entry gets rxw (with ACL_MASK of rxw). Even though the S_IRWXG
bit is showing as set (due to the mask), the file group's access is
still limited to what is specified in the ACL_GROUP_OBJ entry.
Cheers,
Kevin.
More information about the acl-devel
mailing list