From: Amon Ott <ao@rsbac.org>
Subject: Re: acl and more
Date: Mon, 13 Aug 2001 10:27:35 +0200
Next Article (by Author): Re: Inaccuracies in attr_get_up Amon Ott
Previous Article (by Author): Re: acl and more Amon Ott
Top of Thread: acl and more Arkady A Drovosekov
Articles sorted by: [Date]
[Author]
[Subject]
On Fre, 10 Aug 2001 Arkady A Drovosekov wrote: > today I tried to make some experience with acl's, all seems strange: > > User1 creates file1 > Secoff adds root,user1,user2 to acl list of users for file1 > Secoff removes all acl rights on file1 for user1 > Secoff adds all acl rights (except access_control, supervisor, forward) on file1 for user2 > Secoff removes all acl rights on file1 for root > > After that: root and user1 (owner of file1) still can do anything with file1 > User2 can not modify file1, can read file1. > > Any ideas?.. I'll check on other host of course. Did you also change inherited rights for group 0 / Everyone? Groups rights are added to user rights, and on :DEFAULT:, this group gets full rw. You will probably have to use the mask again. Amon. - To unsubscribe from the rsbac list, send a mail to majordomo@rsbac.org with unsubscribe rsbac as single line in the body.
Next Article (by Author): Re: Inaccuracies in attr_get_up Amon Ott
Previous Article (by Author): Re: acl and more Amon Ott
Top of Thread: acl and more Arkady A Drovosekov
Articles sorted by: [Date]
[Author]
[Subject]