On Jan 26, 2010, at 9:19 AM, Tim Haley wrote:
...
> ACE Inheritance
>
> Parent directory has the following ACL:
>
> drwxr-xr-x+ 2 root root 2 Dec 9 14:18 dir.1
> user:marks:rwxp----------:fd-----:allow
> owner@:rwxp--aARWcCos:-------:allow
> group@:r-x---a-R-c--s:-------:allow
> everyone@:r-x---a-R-c--s:-------:allow
>
> A simple file create in directory dir.1 will result in the
> following ACL:
>
> # touch file.1
> # ls -V file.1
> -rw-r--r--+ 1 root root 0 Dec 9 14:20 file.1
> user:marks:r-------------:------I:allow
> owner@:rw-p--aARWcCos:-------:allow
> group@:r-----a-R-c--s:-------:allow
> everyone@:r-----a-R-c--s:-------:allow
>
> The inherited ACE for marks was reduced to be no greater than the
> group
> permissions because the "aclmode" property is set to "restricted."
> If the "aclinherit" property was set to "passthrough" then the
> inherited
> permissions for "marks" would have been "rwxp."
A nit: "aclmode" in the text quoted above should be "aclinherit",
right?
-- Glenn
