Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Problems with ACL (seems like a bug)
Top Forums UNIX for Advanced & Expert Users Problems with ACL (seems like a bug) Post 302413921 by rodrigoroma on Sunday 18th of April 2010 10:34:39 AM
Old 04-18-2010
Problems with ACL (seems like a bug)
Hi, i think i have found a bug in the unix ACL permissions.
I tested this problem in the Ubuntu 9.10 and in SLES 10 and 11, all of them with setfacl 2.2.47.

Well, I have done the following test:

1) Create a folder and set some named user, and set the same ACL entry for the Default ACL, like the following example:
Code:
mkdir dir1
setfacl -m u:rodrigo:rwx dir1/
setfacl -d -m u:rodrigo:rwx dir1/
getfacl dir1/
# file: dir1/
# owner: root
# group: root
user::rwx
user:rodrigo:rwx
group::r-x
mask::rwx
other::r-x
default:user::rwx
default:user:rodrigo:rwx
default:group::r-x
default:mask::rwx
default:other::r-x

At this moment I'm getting the following result when I type ls -l:
Code:
drwxrwxr-x+ 3 root root 4096 2010-04-18 10:35 dir1

Note that the permissions for the owner group is different than the ones shows by the getfacl command!

2) Now I create a file in this directory, that should inherit the Default ACL from dir1/
Code:
cd dir1/
touch file1
getfacl dir1/
# file: file1
# owner: rodrigo
# group: rodrigo
user::rw-
user:rodrigo:rwx        #effective:rw-
group::r-x            #effective:r--
mask::rw-
other::r--

Note that some permissions are different from the ones in the Default ACL in the dir1/

My question is: why the file1's permissions are diferrent from the dir1's default ACL entries? Is this a bug?

Thanks for reading!
 

8 More Discussions You Might Find Interesting

1. Cybersecurity

ACL

Hi all, I've just been handled the responsibility for a FTP-site. Having no experiens of UNIX at all. And now one of my users needs to have full access to the usr directory and all it's subdirectories, don't know why just trying to do what the boss tells me. The type of UNIX is FreeBSD and the... (4 Replies)
Discussion started by: -tri-
4 Replies

2. UNIX for Dummies Questions & Answers

ACL vs privileges

Hello genius..! what do y'all think of these questions...? help appreciated...! Access Control Lists and privileges.... # Why both file ACLs and user permissions/privileges (not to be confused with rights in ACLs) are used in Windows access control (why not just use one of these)? # In... (1 Reply)
Discussion started by: heroine
1 Replies

3. Linux

ACL

Hi, I want to know what does the "effective" comment means in the output of the getfacl and whether it has to do with the acl mask... thanks (0 Replies)
Discussion started by: Gartlar
0 Replies

4. Solaris

ACL

Can i get the synopsis for add multiple users in single command for ACL access for a directory or a file thanks in advance dinu (3 Replies)
Discussion started by: dinu
3 Replies

5. HP-UX

When did HP-UX have support for ACL?

Hello, I try to find what year HP-UX got support for ACL (Access Control List)? I know that HP-UX was the first Unix with ACL support, but it is very hard to find the information on when that occured. So anyone here know when that did happen? Any answers are appreciated, /eXpander (1 Reply)
Discussion started by: eXpander
1 Replies

6. UNIX for Advanced & Expert Users

Need assistance on ACL

Hi Friends, I went through the ACL threads that were posted in the past but none were matching to my requirement . Hence starting a new thread . Challenge : user : a group : Test1 user: b group: Test2 Say under user a i create dir /tmp/debug with the privilege of 755 and also... (3 Replies)
Discussion started by: leobreaker
3 Replies

7. UNIX for Dummies Questions & Answers

ACL concept

Hi.. Could someone explain about setfacl,getfacl in unix and its uses. Regards, Suresh (1 Reply)
Discussion started by: suresh sunkara
1 Replies

8. UNIX for Advanced & Expert Users

ACL confusion

All, I am trying to clear ACL's completely from all files and folders in a directory. I can get the directories as cleared as: # owner: root # group: root user::rwx group::r-x other::rwx default:user::rwx default:group::r-x default:other::r-x What ever I do I can't remove the... (4 Replies)
Discussion started by: hburnswell
4 Replies

LEARN ABOUT OSF1

acl_create_entry

acl_create_entry(3)					     Library Functions Manual					       acl_create_entry(3)

NAME

       acl_create_entry - Create a new ACL entry

LIBRARY

       Security Library (libpacl.a)

SYNOPSIS

       #include <sys/acl.h>
       acl_entry_t acl_create_entry(	  acl_t *acl_p);

PARAMETERS

       Points to the working storage internal representation ACL to create the new entry in.

DESCRIPTION

       NOTE:  This function is based on Draft 13 of the POSIX P1003.6 standard.

       The acl_create_entry() function creates a new ACL entry in the ACL pointed to by the acl_p argument.  If there is insufficient space in the
       ACL for creating a new entry, then additional memory is allocated.

       The components of the new ACL entry are initialized as follows: The ACL tag type component does not contain a possible ACL tag type The tag
       qualifier component does not refer to any possible user ID or group ID The set of permissions does not have any permissions specified.

RETURN VALUES

       Upon  successful  completion,  the  acl_create_entry()  function  returns  the descriptor for the new entry.  Otherwise, a value of NULL is
       returned, and errno is set to indicate the error.

ERRORS

       If any of the following conditions occur, the acl_create_entry() function sets errno to the corresponding value: The  acl_p  argument  does
       not refer to a valid ACL.  The new ACL entry requires more memory than the system is able to provide.

RELATED INFORMATION

       acl_delete_entry(3)

       Security delim off

															       acl_create_entry(3)
All times are GMT -4. The time now is 12:55 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy