On Fri, Aug 20, 2010 at 08:46:10PM -0700, Linda Walsh wrote:
Carlos E. R. wrote:
On 2010-08-21 03:45, Andreas wrote:
Hi,
I'd be happy if someone could give me a pointer to a way to have more than r,w,x for owner/group/others. Actually I need more than owner/group/others. Have a look in "man acl". It is more versatile, but I don't know how to use it, nor if a user can do it.
Use 'chacl' it's a better interface.
setacl/getacl are based on the system calls and not really intended for humans, but more for programs.
The libraries are for programs. While getfacl and setfacl are the command line tools to set and get Access Control Lists (ACLs) of files and directories.
I always have to look at an example when I use it and don't 'super' understand the 'mask' (for some reason it's used to replace the umask, but not sure why that was considered necessary).
Read http://www.suse.de/~agruen/acl/linux-acls/online/ if you like to know why they are implemented as they are.
I wrote a primitive script to allow to list them: ~romeo/poems> lsacl * [u::rw-,u:juliet:rw-,g::---,m::---,o::---] mylove [u::rw-,g::---,o::---] sonnet1 [u::rw-,g::---,o::---] sonnet2
Using "getfacl --tab <file|dirrectory>" might help too. Lars -- Lars Müller [ˈlaː(r)z ˈmʏlɐ] Samba Team SUSE Linux, Maxfeldstraße 5, 90409 Nürnberg, Germany