Default ACL: Semantics (again)
Peter J. Holzer
hjp at wsr.ac.at
Wed Oct 6 10:36:17 GMT 1999
On 1999-10-05 13:38:44 +0200, Andreas Gruenbacher wrote:
> The rules suggested don't allow, for files created, to grant
> different rights to different users. Consider the following
> scenario:
>
> User A shall be allowed to create files, but is not
> allowed zo change the files created afterwards.
>
> User B is allowed to create files, and is also allowed
> to change the files afterwards.
>
> Apart from the fact that with the basic rwx set of permissions,
> it is possible for user A to delete and re-create files,
It is also possible for user A to change the acl of the file after
creation (he is the owner of the file after all) and then write to it.
> The scheme proposed may lead to weird results, like in this
> case:
I think the default ACL is a little weird, so I would expect wierd
results.
> andy at snowball:/acl/test > getfacl .
> # file: .
> # owner: lisa
> # group: toolies
[...]
> default:user::---
> default:user:andy:rwx
> default:group::---
> default:mask:rwx
> default:other:---
>
> andy at snowball:/acl/test > echo "test" >file1
> andy at snowball:/acl/test > getfacl file1
> # file: file1
> # owner: andy
> # group: toolies
> user::---
> user:andy:rwx #effective:rw-
I don't think so. 5.3.1.2 (2) says:
Both the ACL_USER_OBJ ACL entry permission bits and the file owner
class permission bits of the access ACL are set to the intersection
of the default ACL's ACL_USER_OBJ permission bits and the file owner
class permission bits in mode.
I couldn't find a definition of "file owner class permission bits of the
access ACL", but from context I guess that it means "permission bits
of all ACL_USER entries which match the file owner". So I think that
user:andy: should be set to ---, too.
hp
--
_ | Peter J. Holzer | Nobody should ever have to be
|_|_) | Sysadmin WSR / Obmann LUGA | ashamed if they have a secret love
| | | hjp at wsr.ac.at | for writing computer programs that
__/ | http://wsrx.wsr.ac.at/~hjp/ | actually work. -- Donald E. Knuth
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 371 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/posix1e/attachments/19991006/d14a90ec/attachment.bin
More information about the posix1e
mailing list