Sorry, a word was missing in my last post that was making it confusing. I was already understanding the mask concept the way you describe it.
The bottom line is, regardless of the "umask vs mask" and "wrx vs rwx" typos in the initial command posted, the behavior the OP is observing is correct and there is no way to directly achieve what he wants.
ZFS NFSv4 ACLs wouldn't help either in that case as existing files permissions aren't affected by the inheritance flags.
In any case, assuming the directory ACL are properly set, it would be possible for the user to overcome the limitation by first renaming the file to edit, then copying that file to the original name and finally removing the copy. eg:
Hi,
On the setfacl, I am trying to make one user with no rwx privilleges. After reading the man page I still can't get it. Please let me know the correct command.
set user - SAM to have NO rwx privilleges on NEW objects
setfacl -dm user:sam:--- /opt
set user - SAM to have NO... (2 Replies)
hello,
I am using XFS filesystem & ACL (setfacl/getfacl). I can set ACL entries only for 21 users per one directory. For the 22nd user it shows invalid argument.
Has somebody the same problem? I need to override this limit.
thnks in advance
david (3 Replies)
Hi All,
I am trying to set an ACL for a directory on my Solaris 10 box. I have an application which resides under /opt/CA directory. Application is installed by root and running as root. All log and configuration files are placed under /opt/CA as well.
What I am trying to do is granting... (1 Reply)
Hi all,
If, for e.g. I have folder with permissions like this:
drwxr-xr-x 2 fuad_ftp nms 96 Jan 8 13:55 test
I want to give for user user123 acces rwx using setfacl:
setfacl -m user:user123:rwx test
But effective rights still is r-x because of mask...
... (1 Reply)
My Admin has written a shell script (Filepermission.ksh) with the following commands and provided me 'exeutive' privileges. However, when I try to run the script, I am getting the following error message. Can some one tell me what could be missing? Thank you for your continued support.
Script:
... (0 Replies)
I use:
setfacl -m user:bbb:rwx folder1
to give user bbb the permission to go into my folder folder1,
and
cd folder1
setfacl -m user:bbb:rwx *
to give bbb the permission under this folder.
however, bbb can not cd to folder1, and got "permission denied" messages.
the umask is... (3 Replies)
Hi,
I have a directory with 700 permissions. I intend to give rwx privileges to a user which does not belong to the group.
I am using the following command
setfacl -m u:prod:rwx test
when I checked the privileges using
getfacl -a test
the output was as follows:
# file: test
#... (1 Reply)
Config::Model::OpenSsh(3pm) User Contributed Perl Documentation Config::Model::OpenSsh(3pm)NAME
Config::Model::OpenSsh - OpenSsh config editor
SYNOPSIS
invoke editor
The following will launch a graphical editor (if Config::Model::TkUI is installed):
sudo cme edit sshd
command line
This command will add a "Host Foo" section in "~/.ssh/config":
cme modify ssh Host:Foo ForwardX11=yes
programmatic
This code snippet will remove the "Host Foo" section added above:
use Config::Model ;
use Log::Log4perl qw(:easy) ;
my $model = Config::Model -> new ( ) ;
my $inst = $model->instance (root_class_name => 'Ssh');
$inst -> config_root ->load("Host~Foo") ;
$inst->write_back() ;
DESCRIPTION
This module provides a configuration editors (and models) for the configuration files of OpenSsh. ("/etc/ssh/sshd_config",
/etc/ssh/ssh_config and "~/.ssh/config").
This module can also be used to modify safely the content of these configuration files from a Perl programs.
Once this module is installed, you can edit "/etc/ssh/sshd_config" with run (as root) :
# cme edit sshd
To edit /etc/ssh/ssh_config, run (as root):
# cme edit ssh
To edit ~/.ssh/config, run as a normal user:
# cme edit ssh
user interfaces
As mentioned in cme, several user interfaces are available with "edit" subcommand:
o A graphical interface is proposed by default if Config::Model::TkUI is installed.
o A Curses interface with option "cme edit ssh -ui curses" if Config::Model::CursesUI is installed.
o A Shell like interface with option "cme edit ssh -ui shell".
AUTHOR
Dominique Dumont, (ddumont at cpan dot org)
SEE ALSO
cme, Config::Model,
perl v5.14.2 2012-10-29 Config::Model::OpenSsh(3pm)