Date: Sat, 09 Aug 2008 00:29:15 +0200 From: Svein Halvor Halvorsen <svein.h@lvor.halvorsen.cc> To: acmeinc <akme.inc@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: ACLs, permission mask and chmod g= Message-ID: <489CC8BB.9060607@lvor.halvorsen.cc> In-Reply-To: <18899706.post@talk.nabble.com> References: <489C5BAE.6010205@lvor.halvorsen.cc> <18899706.post@talk.nabble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enigE594FB0D43CD9E0A20BA9C0F Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable acmeinc wrote: > You may consider trying chmod 660 filename. It gives the same result. When changing group permission (either way) on a file with acls, you're effectively changing the acl mask instead. Also, if I change acl mask with setfacl, then ls -l will list the permission mask in the group columns in the output. If this is by design, then it isn't documented in chmod(1) (or anywhere else that I can see). It kinda makes sense this way, though. If you chmod the group permission, you change all groups' permissions. But I'd like to see it documented, as it caused me some confusion, and I still think that this isn't obvious. > Svein Halvor Halvorsen-4 wrote: >> If I have acls enabled on a file, running chmod g=3Drw on that file, >> will not change its group permissions, but the acl mask. >> >> That is, running the following command: >> $ chmod g=3Drw foo >> >> ... is equivalent with >> $ setfacl -m m::rw- >> >> ... and not, as I would suspect: >> $ setfacl -m g::rw- >> >> In other words, foo will not be read/writable by its default group >> after the command have been run (unless it was already). >> >> I find this behaviour to be very confusing. It might be the correct >> bahaviour, but if so maybe the chmod(1) manpage, and possibly >> chmod(2), should be updated to document this? >> >> >> Svein Halvor >> >> >> =20 >> >=20 --------------enigE594FB0D43CD9E0A20BA9C0F Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD) Comment: mailto:pgpkey@svein.halvorsen.cc to get my PGP-key iEYEARECAAYFAkicyL8ACgkQhQg3vZGYu0Cg5QCeO0m+kmyPSDVu45Aeb5VNwBAp 0TUAnjU90aQGvVAHVeptn3DOTKSrHd5r =QD3/ -----END PGP SIGNATURE----- --------------enigE594FB0D43CD9E0A20BA9C0F--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?489CC8BB.9060607>