From owner-freebsd-questions@FreeBSD.ORG  Mon Mar 10 11:51:57 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 4E2709DA
 for <freebsd-questions@freebsd.org>; Mon, 10 Mar 2014 11:51:57 +0000 (UTC)
Received: from mail-oa0-f46.google.com (mail-oa0-f46.google.com
 [209.85.219.46])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 1A10EDF0
 for <freebsd-questions@freebsd.org>; Mon, 10 Mar 2014 11:51:56 +0000 (UTC)
Received: by mail-oa0-f46.google.com with SMTP id i7so6905171oag.19
 for <freebsd-questions@freebsd.org>; Mon, 10 Mar 2014 04:51:50 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:mime-version:date:message-id:subject:from:to
 :content-type;
 bh=K891uXB6HLCkRyD9rUjT89ajz9MX/k7xIi4lasg7qwc=;
 b=JD1szlwKcp6kObx+5nY4ihcENYuKECOUlsxqegnCZy7XWpgCapMa6h90P1czN4yYB9
 WippXmFKATx0hWsCRSCzpq86QVegYOv/qixpJz7jwI7glXSuhvdyEePCoJpq1piWeeSv
 iHm7wQg9IXMjjwPNRgzNwW8NT7cck92/hIqyCYt4vNsRTdzm5SbwVvWob6Khp2dTkKsm
 0g74aoSDsJtxN/kQOdzlHLdJDhZgdFxdtp0hJYu01xPrmKGv/dQsN8qmxAQzhtN1/a86
 JxfbQH3Tua3U8mBC+vKZrXNZO/spwZ9zuU79X8hpZpQdSyHFa/wKqrRI7Rq/3z/ZcaQJ
 FhSw==
X-Gm-Message-State: ALoCoQm/YRtUxAFc9UApbBNJz5LxEmehOwIQGlHcQatLBp+vfWsyokPtp0OftlbMBbQTOh/PNmWY
MIME-Version: 1.0
X-Received: by 10.60.92.202 with SMTP id co10mr167587oeb.73.1394452310125;
 Mon, 10 Mar 2014 04:51:50 -0700 (PDT)
Received: by 10.76.144.136 with HTTP; Mon, 10 Mar 2014 04:51:50 -0700 (PDT)
Date: Mon, 10 Mar 2014 12:51:50 +0100
Message-ID: <CA+7qukxY4XZZr3oWjzpnL+g6taNkbMd7pOHUDegORAmK6RrvgA@mail.gmail.com>
Subject: ACL questions
From: "BONNET, Frank" <frank.bonnet@esiee.fr>
To: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org>
Content-Type: text/plain; charset=UTF-8
X-Content-Filtered-By: Mailman/MimeDel 2.1.17
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Mar 2014 11:51:57 -0000

Hello

I have ACL question , for internal purpose I need to let some users access
to their home directory
through the WEBDAV protocol with RW access rights.( apache22 )

Authentication is done with LDAP and works fine

As the webdav processes are owned by the "www" user it cannot access to the
user's homedir

Is it possible to add an ACL to the users's homedir  to give the www user
RW access to the homedir ?

I KNOW this is a security risk , this is just a test for now on a small set
of users

Any other solutions welcome :-)


Thank you