On Wed, 24 Dec 2003, Tuomo Valkonen wrote: > (It really should be possible to force umask > as well by directory, though...)
I think POSIX ACLs provides that functionality. On the other hand, they seem to be more "hidden" than traditional Unix permissions, which may create a security problem. I kind of like AFS ACLs which are set per directory with file permissions ignored (group and other), but this is not what people and applications are used to which is a problem (AFS itself is problematic because of its limited interoperability with the Unix world).
