Re: acl and more


From: Amon Ott <ao@rsbac.org>
Subject: Re: acl and more
Date: Mon, 13 Aug 2001 10:27:35 +0200

Next Article (by Date): Re: Inaccuracies in attr_get_up Amon Ott
Previous Article (by Date): Inaccuracies in attr_get_up Aleksandr Blohin
Top of Thread: acl and more Arkady A Drovosekov
Articles sorted by: [Date] [Author] [Subject]


On Fre, 10 Aug 2001 Arkady A Drovosekov wrote:
> today I tried to make some experience with acl's, all seems strange:
> 
> User1 creates file1
> Secoff adds root,user1,user2 to acl list of users for file1
> Secoff removes all acl rights on file1 for user1
> Secoff adds all acl rights (except access_control, supervisor, forward) on file1 for user2
> Secoff removes all acl rights on file1 for root
> 
> After that: root and user1 (owner of file1) still can do anything with file1
> User2 can not modify file1, can read file1.
> 
> Any ideas?.. I'll check on other host of course.

Did you also change inherited rights for group 0 / Everyone? Groups rights are
added to user rights, and on :DEFAULT:, this group gets full rw. You will
probably have to use the mask again.

Amon.
-
To unsubscribe from the rsbac list, send a mail to
majordomo@rsbac.org with
unsubscribe rsbac
as single line in the body.

Next Article (by Date): Re: Inaccuracies in attr_get_up Amon Ott
Previous Article (by Date): Inaccuracies in attr_get_up Aleksandr Blohin
Top of Thread: acl and more Arkady A Drovosekov
Articles sorted by: [Date] [Author] [Subject]


Go to Compuniverse LWGate Home Page.