On 13/04/2019 06.46, Andrei Borzenkov wrote:
12.04.2019 23:02, Carlos E. R. пишет:
User "cer-g" is member of groups "users" and "cer"
Directory has group permission "rwx"
It does not.
No, group has "rwx". Group ACL as "---". I thought the main permissions had priority.
and is owned by "cer:cer" Same for parent directory.
The user "cer-g" is denied access to the directory "Conviction/" and others.
Why?
File permissions deny access to members of file group.
No, ACL permissions deny access.
I also have this:
cer-g@Isengard:/data/My_Book/Fusion/Videos> getfacl Conviction # file: Conviction # owner: cer # group: cer # flags: --t user::rwx user:wwwrun:r-x group::--- ^^^^^^^^^^^^ mask::rwx other::r--
Yes, I thought of that this morning, but it is not my doing. The command I used to set ACLSs was: setfacl -m u:wwwrun:rx The file was copied from another directory, by rsync. Original file: cer-g@Isengard:~/F_Videos/1_Almacenar> getfacl Conviction # file: Conviction # owner: cer-g # group: cer # flags: --t user::rwx user:wwwrun:r-x group::rwx <===== mask::rwx other::r-- copied file: cer-g@Isengard:~/F_Videos/1_Almacenar> cer-g@Isengard:~/F_Videos/3_MyBook_Videos> getfacl Conviction # file: Conviction # owner: cer # group: cer user::rwx user:wwwrun:r-x group::--- <==== mask::rwx other::r-- How has the ACL changed ? (the 't' I deleted yesterday) The command to copy the files was: cer@Isengard:~> time rsync --archive --acls --xattrs \ --hard-links --sparse --stats --human-readable \ --checksum /data/waterhoard/Fusion/Videos/1_Almacenar/ \ /data/My_Book/Fusion/Videos/ I told rsync to keep the ACLS, but it has modified them. -- Cheers / Saludos, Carlos E. R. (from 15.0 x86_64 at Telcontar)