Hello,
I'd like to duplicate the following ACL:
# file: /data/shared/
# owner: harry
# group: harry
group:1stgroup:r-x---a-R-c--s:fd:allow
group:2ndgroup:rwxp--a-R-c--s:-d:allow
group:2ndgroup:D-:-d:deny
group:2ndgroup:r-a-R-c--s:f-i---:allow
Wiadomość napisana przez Harald Schmalzbauer w dniu 8 lut 2013, o godz. 17:54:
Hello,
I'd like to duplicate the following ACL:
# file: /data/shared/
# owner: harry
# group: harry
group:1stgroup:r-x---a-R-c--s:fd:allow
group:2ndgroup:rwxp--a-R-c--s:-d:allow
group
the ordering does
matter,
and -m simply modifies the ACL entry in place, while the effect of the
entry might depend e.g. on deny entries before it. Use -a instead.
Forgive me- I am not particularly strong when it comes to shell scripting. I
will modify so that the -a parameter is used instead of -m
good
idea - it's supposed to work, but with NFSv4 ACLs the ordering does
matter,
and -m simply modifies the ACL entry in place, while the effect of the
entry might depend e.g. on deny entries before it. Use -a instead.
Forgive me- I am not particularly strong when it comes to shell
-0 setfacl -b *
Why the asterisk? Also, using -m with NFSv4 ACLs is not a very good
idea - it's supposed to work, but with NFSv4 ACLs the ordering does
matter,
and -m simply modifies the ACL entry in place, while the effect of the
entry might depend e.g. on deny entries before
,
and -m simply modifies the ACL entry in place, while the effect of
the
entry might depend e.g. on deny entries before it. Use -a instead.
Forgive me- I am not particularly strong when it comes to shell
scripting. I will modify so that the -a parameter is used instead of -m
when setting
simply modifies the ACL entry in place, while the effect of the
entry might depend e.g. on deny entries before it. Use -a instead.
--
If you cut off my head, what would I say? Me and my head, or me and my body?
___
freebsd-questions@freebsd.org
Hello all-
I've set up ZFS on a FreeBSD 9.0 64-bit server recently. One of the things I've
had to learn relates to NFSv4 ACLs. I've developed two scripts to reset
permissions- one for files and the other for folders. I've run into an issue
with executing a script to set permissions on a bunch
to
have
ACL support integrated in it[1] by default. Are you sure there isn't any
such
setting you probably missing during compilation in KDE 4.x ?
References:
[1] http://www.flickr.com/photos/wahjava/507889368/#/
No really. You cannot add users or change individual user's
articulated:
I've not used KDE since they released KDE 4, but IIRC, KDE 3.5.x used to
have
ACL support integrated in it[1] by default. Are you sure there isn't any
such
setting you probably missing during compilation in KDE 4.x ?
References:
[1] http://www.flickr.com
On Fri, 16 Jul 2010 09:17:25 +0530
Ashish SHUKLA ash...@freebsd.org articulated:
I've not used KDE since they released KDE 4, but IIRC, KDE 3.5.x used to have
ACL support integrated in it[1] by default. Are you sure there isn't any such
setting you probably missing during compilation in KDE 4
I am looking for a GUI to manage ACL's. I have heard about Eiciel;
however, I was told it only works with 'nautilus'. I was looking for a
stand alone type of program if one was available. I am presently using
KDE for a desktop if that makes any difference.
--
Carmel ✌
carmel...@hotmail.com
since they released KDE 4, but IIRC, KDE 3.5.x used to have
ACL support integrated in it[1] by default. Are you sure there isn't any such
setting you probably missing during compilation in KDE 4.x ?
References:
[1] http://www.flickr.com/photos/wahjava/507889368/#/
HTH
--
Ashish SHUKLA | GPG
Hello guyz,
I have here a little misunderstanding of something. Maybe I didn't do it
corectly; anyway, it works, so that's the question. Regarding ACL's
default entry. When I specify one, It doesn't apear as one would aspect.
For instance, on solaris, when I set default ACL on a folder I
Vasadi I. Claudiu Florin wrote:
Now, on FreeBSD I have no such default options, but strainglly it works.
It's good that it works, but the problem remains... how to tell, with
detailes, IF a default ACL is set to a folder, AND what's is it's values.
Is getfacl -d what you are looking
On Thu, 02 Apr 2009 11:09:16 +0300, Vasadi I. Claudiu Florin
claudiu.vas...@gmail.com wrote:
On Thu, 02 Apr 2009 11:06:40 +0300, Victor Sudakov v...@mpeks.tomsk.su
wrote:
Is getfacl -d what you are looking for?
Maybe I didn't speak corectly. I already set the ACL (yes, setfacl -d
Vasadi I. Claudiu Florin wrote:
Is getfacl -d what you are looking for?
Maybe I didn't speak corectly. I already set the ACL (yes, setfacl -d
[...]) but when I do getfacl file,
Don't do just getfacl file, try getfacl -d file.
--
Victor Sudakov, VAS4-RIPE, VAS47-RIPN
sip:suda
Hi,
I have acl support on some filesystems, and wanted to turn it on on
/home, too. So I ran:
# mount -u -o acls /home
Now, just mount listed /home as supporting acls.
But now, whenever I ls -l on any folder on that filesystem, I get
operation not supported. It seems other file system access
Svein Halvor Halvorsen wrote:
I have acl support on some filesystems, and wanted to turn it on on
/home, too. So I ran:
# mount -u -o acls /home
Ok, I'm just being an ignorant noob, who's not able to read the
documentation. I'm sorry for the noise, but for the record:
ACLs cannot be turned
Svein Halvor Halvorsen wrote:
Svein Halvor Halvorsen wrote:
I have acl support on some filesystems, and wanted to turn it on on
/home, too. So I ran:
# mount -u -o acls /home
Ok, I'm just being an ignorant noob, who's not able to read the
documentation. I'm sorry for the noise
Hi,
I need to remove all the acls from a directory and its files, I've done
that successfully using setfacl -bn. This dir is being used by samba but
because of the way its now being used we don't need acls on it any more.
The thing is every time we create a file either trough samba or from a
Hello,
I'm getting quite annoyed at ACLs. I don't understand why this is
happening: I have a directory that gets subdirectories created by a web
script, but for some reason those directories have different
permissions. Here is the parent's default ACL, which as I understand it
should be what
Hello there.
I have apache running php-cgi via fastcgi and suexec on a shared system.
Each vhost has a SuexecUserGroup set to the user/group of normal system
account ( which does not have shell access ) which owns the vhost.
Now. I was wondering what the best way of using MAC/ACL's to stop a
://home.schottelius.org/~nico/freebsd/acl/
--
``...if there's one thing about Linux users, they're do-ers, not whiners.''
(A quotation of Andy Patrizio I completely agree with)
signature.asc
Description: Digital signature
to contact for the issues I've reported
on [0].
Thanks for any hints,
Nico
[0]: http://home.schottelius.org/~nico/freebsd/acl/
You should probably use send-pr to file a bug report, and list your
test-cases in it. If you can write a patch to improve or fix any mis-
behavior by the tools
Looks like noone is really using ACLs (and default ACLs) on fbsd.
classic unix uid/gid is simplest and enough for MOST (or every - i
think) cases. it just needs to be used right
Please imagine this. We're running a web server and want each user to be
able to
modify/delete files created
Wow, sombody even reads this thread!
Wojciech Puchar [Mon, Oct 23, 2006 at 07:43:47PM +0200]:
posted a question about ACLs because I'm having difficulties setting up
default ACLs. My question was posted 11/10 but I haven't got an answer
yet.
Looks like noone is really using ACLs (and
On Oct 24, 2006, at 1:32 AM, Nico -telmich- Schottelius wrote:
Situation:
- git running on fbsd 5.3.
- 4 people work on the same project
- git is used over ssh (aka git+ssh://)
- when new objects are created, they belong to the creating user
- normal umask is 077 (we are all
Patrik Jansson [Thu, Oct 19, 2006 at 09:38:36AM +0200]:
I would also like to know if there's a in-depth ACL documentation. I
posted a question about ACLs because I'm having difficulties setting up
default ACLs. My question was posted 11/10 but I haven't got an answer
yet.
Looks like noone
posted a question about ACLs because I'm having difficulties setting up
default ACLs. My question was posted 11/10 but I haven't got an answer
yet.
Looks like noone is really using ACLs (and default ACLs) on fbsd.
classic unix uid/gid is simplest and enough for MOST (or every - i think)
is that the default ACL will provide ACL-based rwx access
for the group 'git' (minus real permissions / mask makes rw or rwx
for files, rwx for directories).
I've mostly problems with default ACLs and the new permissions.
I put two test-scripts to [1], plus their output (*.output) and
the questions I've
is that the default ACL will provide ACL-based rwx access
for the group 'git' (minus real permissions / mask makes rw or rwx
for files, rwx for directories).
I've mostly problems with default ACLs and the new permissions.
I put two test-scripts to [1], plus their output (*.output) and
the questions I've
Hi:
I'm trying to build my address book, now since my own name contains
non-ascii characters, my cn becomes
cn:: RXJpayBOw7hyZ2FhcmQ=
I wish to restrict access so that each person can edit his own details,
but not search the entire directory, something like this should do:
# Access Control:
Erik Norgaard wrote:
But what do I put in place of cn=myname?
But, what do I set as binddn? I am using the address book with
Thunderbird and I don't know if it is smart enough to convert iso chars
to utf-8.
Seems to have same answer, only that in slapd.conf myname must be
written in utf-8
Greetings People:
In setting up a Samba server w/ACL support I note the following from
Samba docs regarding map acl inherit:
This boolean parameter controls whether smbd(8) will attempt to map
the 'inherit' and 'protected' access control entry flags stored in
Windows ACLs into an extended
' I get
System error 5 has occurred
Access is denied
Googling around I found that I should add this
nt acl support = no
which I did. Didn't help. Here is my smb.conf
[global]
workgroup = PRESBY
nt acl support = no
server string = Samba Server
hosts allow = 192.168.1. 192.168.2
SOLVED
On the XP machine:
Control Panel Administrative Tools Local Security Policy
Security Settings Local Policies Security Options
Scroll to:
Microsoft network client: Send unencrypted password to third-party
SMB servers
Double click Enable
Reboot.
You could do the same thing in
Timothy J. Luoma skrev:
SOLVED
IMHO no!
On the XP machine:
Control Panel Administrative Tools Local Security Policy
Security Settings Local Policies Security Options
Scroll to:
Microsoft network client: Send unencrypted password to third-party
SMB servers
You put this in your
Timothy J. Luoma skrev:
Microsoft network client: Send unencrypted password to third-party
SMB servers
From smb.conf
# You may wish to use password encryption. Please read
# ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
# Do not enable this option unless you have read
Hi all,
Just a quick question... Will the following work for bind9:
acl myacl {
192.168.0.0/16;
};
view internal {
match-clients { myacl; !192.168.1.1; };
};
Basically, I'm trying to include a network into my view, except one address...
Thanks,
Chris
Hey all, I'd like to make a live backup of a file system on a regular
basis, and maintain permissions, but have such a thing be only writable by
root at any given time. (i.e. I keep a backup drive unmounted, and mount
it read-only when users need their data). The thing is, I have to mount
it
Adam Stroud wrote:
All:
I am trying to enable ACL support of my FreeBSD 5.3 box. I drop into
single user mode and run the tunefs -a enable command on my partition
and get the following:
tuenfs: ACLs set
tunefs: /dev/ad0s1a: failed to write superblock
When I reboot it seems
Adam Stroud wrote:
All:
I am trying to enable ACL support of my FreeBSD 5.3 box. I drop into
single user mode and run the tunefs -a enable command on my partition
and get the following:
tuenfs: ACLs set
tunefs: /dev/ad0s1a: failed to write superblock
When I reboot it seems
and
the handbook says I should see one. Does this mean that things did not
take?
A
Kees Plonsz wrote:
Adam Stroud wrote:
All:
I am trying to enable ACL support of my FreeBSD 5.3 box. I drop into
single user mode and run the tunefs -a enable command on my partition
and get the following:
tuenfs: ACLs set
listing of a file and
the handbook says I should see one. Does this mean that things did not
take?
Check if your acl-option is working with mount ( no parameters )
It should give somthing like:
/dev/ad1s1g on /mnt (ufs, local, soft-updates, acls)
Then give the setfacl command on a file:
setfacl
I dont think the acl got enabled, here is my output from mount:
/dev/ad0s1a on / (ufs, NFS exported, local)
Kees Plonsz wrote:
Adam Stroud wrote:
Kees:
You were right, I did not umount the filesystem first, I dropped into
single user mode and I thought that did unmount the filesystem. When I
I did not try that. When I booted into single user more again and tried
the tunefs -a enable / I get a messaged saying that acl was already
enabled. Strange.
A
Kees Plonsz wrote:
On Saturday 27 November 2004 22:58, Adam Stroud wrote:
I dont think the acl got enabled, here is my output from
Adam Stroud wrote:
I did not try that. When I booted into single user more again and tried
the tunefs -a enable / I get a messaged saying that acl was already
enabled. Strange.
The only hope for you is that the enable bit for acl was set, but
not yet read by the system. I think you have
All:
I am trying to enable ACL support of my FreeBSD 5.3 box. I drop into
single user mode and run the tunefs -a enable command on my partition
and get the following:
tuenfs: ACLs set
tunefs: /dev/ad0s1a: failed to write superblock
When I reboot it seems that the ACL are not set.
Any ideas
All:
I am trying to enable ACL support of my FreeBSD 5.3 box. I drop into
single user mode and run the tunefs -a enable command on my partition
and get the following:
tuenfs: ACLs set
tunefs: /dev/ad0s1a: failed to write superblock
When I reboot it seems that the ACL are not set.
Any ideas
Dear list,
Compiling Samba 2.2.8a_2 on FreeBSD 4.10 I saw the option to enable ACL
support for samba.
But Using Samba claims:
--with-acl-support
Includes support for Windows NT/2000/XP access control lists (ACLs). For
this to work, you need to have POSIX ACL support in the host operating
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, 18 Oct 2004, h0444lp6 wrote:
Dear list,
Compiling Samba 2.2.8a_2 on FreeBSD 4.10 I saw the option to enable ACL
support for samba.
But Using Samba claims:
--with-acl-support
Includes support for Windows NT/2000/XP access control lists (ACLs
Hi again
I can't add write permission via ACL
mkdir /dir/docs
chown user:user /dir/docs
setfacl -n -dm u::rwx,g::rx,o::,u:user2:rwx,m::rwx /dir/docs
setfacl -m u:user2:rwx /dir/docs
chmod 750 /dir/docs
I create file in /dir/docs, but user2 have only read permission,
getfacl says
On Mon, Oct 04, 2004 at 11:47:52AM +0500, Sergey Velikanov [UzPAK] wrote:
Date: Mon, 4 Oct 2004 11:47:52 +0500
From: Sergey Velikanov [UzPAK] [EMAIL PROTECTED]
To: freebsd-questions [EMAIL PROTECTED]
Subject: ACL and write permission
Hi again
I can't add write permission via ACL
mkdir /dir/docs
Hi,
is there a way to make ACL smarter about mkdir?
When I set the default on a directory, it works fine and the files in it gets
the right perms. But the subdirectories doesn't get their execution perms. So
those dirs are unusable.
My standard commands for user's web roots (Apache running
Helo guys
I am trying to install the latest exim, but I can't find
exiscan-acl-4.31-16.patch.bz2 on any of the mirrors, anyone know where I
can download it from?
Thanks
Wayne
In a world with no boundaries, Who Needs Gates?
___
[EMAIL PROTECTED
On Thu, Apr 01, 2004 at 09:38:57PM +0200,
Wayne Swart [EMAIL PROTECTED] is thought to have said:
I am trying to install the latest exim, but I can't find
exiscan-acl-4.31-16.patch.bz2 on any of the mirrors, anyone know where I
can download it from?
It is not part of exim. See http
On Thu, Apr 01, 2004 at 09:38:57PM +0200, Wayne Swart wrote:
Helo guys
I am trying to install the latest exim, but I can't find
exiscan-acl-4.31-16.patch.bz2 on any of the mirrors, anyone know where I
can download it from?
http://submonkey.net/files/ for a limited time (a week or so).
Ceri
Ceri Davies wrote:
I am trying to install the latest exim, but I can't find
exiscan-acl-4.31-16.patch.bz2 on any of the mirrors, anyone know where I
can download it from?
http://submonkey.net/files/ for a limited time (a week or so).
Why not from http://duncanthrax.net/exiscan-acl/?
Nico
On Fri, Apr 02, 2004 at 04:06:41PM +0200, Nico Erfurth wrote:
Ceri Davies wrote:
I am trying to install the latest exim, but I can't find
exiscan-acl-4.31-16.patch.bz2 on any of the mirrors, anyone know where I
can download it from?
http://submonkey.net/files/ for a limited time (a week
Is anyone using acls on there file sytstem?
When I change an acl it also sets the unix g permissions the same as the mask
orca# ll
total 4
-rw-r-x---+ 1 root users 68 Feb 5 09:58 index.html
orca# getfacl index.html
#file:index.html
#owner:0
#group:1000
user::rw-
user:nobody:r-x
group
On Thu, Feb 05, 2004 at 10:24:40AM -0700, Jerad Hampton wrote:
Is anyone using acls on there file sytstem?
When I change an acl it also sets the unix g permissions the same as the mask
orca# ll
total 4
-rw-r-x---+ 1 root users 68 Feb 5 09:58 index.html
orca# getfacl index.html
Trying to get ACLs to work on UFS2, and I'm having some trouble getting it
to work on my root partition.
Here's the symptom:
# setfacl -m user:nobody:rwx /testacl
setfacl: acl_get_file() failed: Operation not supported
# setfacl -m user:nobody:rwx /usr/testacl
#
Here's some relevant information
On Sat, Aug 02, 2003 at 06:37:24PM +0200, Grzegorz Czaplinski wrote:
Date: Sat, 2 Aug 2003 18:37:24 +0200
From: Grzegorz Czaplinski [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Default ACL entries.
Hi there!
Does anyone know how to set default ACL entries?
Any examples how to use -d, -k, -X
Hi there!
Does anyone know how to set default ACL entries?
Any examples how to use -d, -k, -X switches with setfacl?
This is all different to Solaris... ;)
Thanks,
gregory
--
Grzegorz Czaplinski gregory at prioris.mini.pw.edu.pl
The Power to Serve, Right for the Power Users! - http
others by chmod 740.
(OP was unable to change membership wrt 'nobody' group.)
The only solution I see is ask their admin to put nobody user to
my group. Or to have some sort of ACL, so I can explicitly grant
permission to nobody user.
It seems from your actions that you think you have powers
On Sat, Aug 02, 2003 at 08:56:05PM -0700, dt wrote:
I recently was able to find a web-hosting company that runs FreeBSD. The
service, I signed up for, allows me to have a SSH access including
series of other services, such as CGI-BIN, Tomcat. On the same machine
that my domain is hosted, there
On Mon, Mar 10, 2003 at 01:48:23PM +0100, Gabriel Ambuehl wrote:
Date: Mon, 10 Mar 2003 13:48:23 +0100
From: Gabriel Ambuehl [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: How to enable ACL support in 5.0?
Hello,
I might appear stupid or not having read the manual, but whatever I
try, I can't
ufs rw,acls 2 2
or use tunefs to set the flag statically in the superblock but tunefs
man page knows nothing at all about ACL.
So what do I need to do to get ACLs to work? Also, I was wondering
when to use ugidfw (more exotic stuff, I presume) and when just basic
ACLs. I
69 matches
Mail list logo