Default ACL: Semantics (again)

Peter J. Holzer hjp at wsr.ac.at
Wed Oct 6 10:36:17 GMT 1999 

On 1999-10-05 13:38:44 +0200, Andreas Gruenbacher wrote:
> The rules suggested don't allow, for files created, to grant
> different rights to different users. Consider the following
> scenario:
> 
>   User A shall be allowed to create files, but is not
>          allowed zo change the files created afterwards.
>          
>   User B is allowed to create files, and is also allowed
>          to change the files afterwards.
> 
> Apart from the fact that with the basic rwx set of permissions,
> it is possible for user A to delete and re-create files,

It is also possible for user A to change the acl of the file after
creation (he is the owner of the file after all) and then write to it.

> The scheme proposed may lead to weird results, like in this
> case:

I think the default ACL is a little weird, so I would expect wierd
results.

> 	andy at snowball:/acl/test > getfacl .
> 	# file: .
> 	# owner: lisa
> 	# group: toolies
[...]
> 	default:user::---
> 	default:user:andy:rwx
> 	default:group::---
> 	default:mask:rwx
> 	default:other:---
> 
> 	andy at snowball:/acl/test > echo "test" >file1
> 	andy at snowball:/acl/test > getfacl file1
> 	# file: file1
> 	# owner: andy
> 	# group: toolies
> 	user::---
> 	user:andy:rwx                   #effective:rw-

I don't think so. 5.3.1.2 (2) says:

    Both the ACL_USER_OBJ ACL entry permission bits and the file owner
    class permission bits of the access ACL are set to the intersection
    of the default ACL's ACL_USER_OBJ permission bits and the file owner
    class permission bits in mode. 

I couldn't find a definition of "file owner class permission bits of the
access ACL", but from context I guess that it means "permission bits
of all ACL_USER entries which match the file owner". So I think that
user:andy: should be set to ---, too.

	hp

-- 
   _  | Peter J. Holzer             | Nobody should ever have to be
|_|_) | Sysadmin WSR / Obmann LUGA  | ashamed if they have a secret love
| |   | hjp at wsr.ac.at               | for writing computer programs that
__/   | http://wsrx.wsr.ac.at/~hjp/ | actually work.  -- Donald E. Knuth
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 371 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/posix1e/attachments/19991006/d14a90ec/attachment.bin

More information about the posix1e mailing list