02-19-2009
changing UGO to ACLs on a file
Hello,
I have a directory and a list of files in it on which I'd like to set ACLs and quota.
To set ACLs regarding the UGO rights set at the moment, I haven't found any other way than grabbing the UGO rights set on the file with a shell cut command and then applying setfacl commands to that file
i.e :
-rwxr-xr-x toto
u=`ls -l toto | awk ' { print $1 } ' | cut -c2-4`
g=`ls -l toto | awk ' { print $1 } ' | cut -c5-7`
o=`ls -l toto | awk ' { print $1 } ' | cut -c8-10`
then ...
echo "setfacl -m u:$u,g:$g,o:$o toto" > /tmp/acllist
then
setfacl -f /tmp/acllist toto
Is there a way to transpose existing UGO rights onto ACLs directly on the file ?
Thanks a lot
9 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
i have a file a.txt contents as 1,2,3,4,......etc...in a single line, i want to write to another file in rows as
1
2
3
4
5
can u help?
i do not know the length of a.txt (4 Replies)
Discussion started by: pravfraz
4 Replies
2. UNIX for Dummies Questions & Answers
Hi,
I have several text files each containing some data as shown below:
File1.txt
>DataHeader
Data...
Data...
File2.txt
>DataHeader
Data...
Data...
etc.
What I want is to change the 'DataHeader' based on the file name. So the output should look like:
File1.txt
>File1
... (1 Reply)
Discussion started by: Fahmida
1 Replies
3. Emergency UNIX and Linux Support
Hi guys,
There is a line in squid default configuration:
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
acls are applied from top down, so CONNECT acl will deny access to all non SSL and SSL ports. I mean it never reaches the second access rule. (0 Replies)
Discussion started by: majid.merkava
0 Replies
4. Red Hat
Afternoon all,
This should be a simple task.
I have set up default acls on a directory to allow user user1 to read it. This directory is owned by root:root.
setfacl -d -m u:user1:rx /directory
I also did via the group.
This works fine, new files made by root are readable.
... (4 Replies)
Discussion started by: snoop6060
4 Replies
5. Solaris
Hi,
Does anyone know a way of making vim preserve ZFS NFSv4 ACLS?
Without disabling file backups in vim that is.
Thanks in advanced. (10 Replies)
Discussion started by: akame
10 Replies
6. UNIX for Advanced & Expert Users
Hi everybody
As the title says I wonder if the usual (in my case Ubuntu 14.04 LTS) linux installation root does in fact uses any of the ACLs possible extensions in any of its files/dirs
I ask this because I usually use tar to backup the entire root (in offline) with a command like this (root... (2 Replies)
Discussion started by: man-walking
2 Replies
7. Red Hat
Hello experts,
I would like to know if is possible to create a default acl rule to a directory.
in this directory all files created should have executable permissions by the group IT.
i tried setfacl -m d:g:it:rwx /files
tried to change the mask setfacl -m m::rwx /files
but i still... (3 Replies)
Discussion started by: berveglieri
3 Replies
8. Red Hat
I work on a distribution application on Linux which generates bulk reference data extract feeds and stores them on a Linux server. I have several consumer applications access the files stored on this Linux server using FTPS protocol. However in order for consumer applications to have access to... (2 Replies)
Discussion started by: waavman
2 Replies
9. AIX
Hi,
I need to grant read permission to a normal user on sulog file on AIX 6.1.
As root I did acledit sulog and aclget shows "extended permissions" as "enabled" and normal user "splunk" has read permissions. When I try to access sulog as splunk user it won't allow and aclget for splunk user... (6 Replies)
Discussion started by: prvnrk
6 Replies
CHACL(1) Access Control Lists CHACL(1)
NAME
chacl - change the access control list of a file or directory
SYNOPSIS
chacl acl pathname...
chacl -b acl dacl pathname...
chacl -d dacl pathname...
chacl -R pathname...
chacl -D pathname...
chacl -B pathname...
chacl -l pathname...
chacl -r pathname...
DESCRIPTION
chacl is an IRIX-compatibility command, and is maintained for those users who are familiar with its use from either XFS or IRIX. Refer to
the SEE ALSO section below for a description of tools which conform more closely to the (withdrawn draft) POSIX 1003.1e standard which
describes Access Control Lists (ACLs).
chacl changes the ACL(s) for a file or directory. The ACL(s) specified are applied to each file in the pathname arguments.
Each ACL is a string which is interpreted using the acl_from_text(3) routine. These strings are made up of comma separated clauses each of
which is of the form, tag:name:perm. Where tag can be:
"user" (or "u")
indicating that the entry is a user ACL entry.
"group" (or "g")
indicating that the entry is a group ACL entry.
"other" (or "o")
indicating that the entry is an other ACL entry.
"mask" (or "m")
indicating that the entry is a mask ACL entry.
name is a string which is the user or group name for the ACL entry. A null name in a user or group ACL entry indicates the file's owner or
file's group. perm is the string "rwx" where each of the entries may be replaced by a "-" indicating no access of that type, e.g. "r-x",
"--x", "---".
OPTIONS
-b Indicates that there are two ACLs to change, the first is the file access ACL and the second the directory default ACL.
-d Used to set only the default ACL of a directory.
-R Removes the file access ACL only.
-D Removes directory default ACL only.
-B Remove all ACLs.
-l Lists the access ACL and possibly the default ACL associated with the specified files or directories. This option was added during
the Linux port of XFS, and is not IRIX compatible.
-r Set the access ACL recursively for each subtree rooted at pathname(s). This option was also added during the Linux port of XFS, and
is not compatible with IRIX.
EXAMPLES
A minimum ACL:
chacl u::rwx,g::r-x,o::r-- file
The file ACL is set so that the file's owner has "rwx", the file's group has read and execute, and others have read only access to the
file.
An ACL that is not a minimum ACL, that is, one that specifies a user or group other than the file's owner or owner's group, must contain a
mask entry:
chacl u::rwx,g::r-x,o::r--,u:bob:r--,m::r-x file1 file2
To set the default and access ACLs on newdir to be the same as on olddir, you could type:
chacl -b `chacl -l olddir |
sed -e 's/.*[//' -e 's#/# #' -e 's/]$//'` newdir
CAUTIONS
chacl can replace the existing ACL. To add or delete entries, you must first do chacl -l to get the existing ACL, and use the output to
form the arguments to chacl.
Changing the permission bits of a file will change the file access ACL settings (see chmod(1)). However, file creation mode masks (see
umask(1)) will not affect the access ACL settings of files created using directory default ACLs.
ACLs are filesystem extended attributes and hence are not typically archived or restored using the conventional archiving utilities. See
attr(5) for more information about extended attributes and see xfsdump(8) for a method of backing them up under XFS.
SEE ALSO
getfacl(1), setfacl(1), chmod(1), umask(1), acl_from_text(3), acl(5), xfsdump(8)
September 2001 ACL File Utilities CHACL(1)