Questions tagged [acl]

ACL stands for access control list. ACLs extend permissions on files beyond the traditional user-group-others triple.

Many Unix variants provide more fine-grained file permissions than the traditional, standard triple of permissions for the owning user, the owning group and others. These permissions are expressed through access control lists. The permissions that can be expressed through ACLs vary between Unix variants.

POSIX ACLs allow setting the read/write/execute bits separately for more than one user or group, and also allow setting default access rights for new files at directory-level, with default ACLs.

Related tags

Resources

Linux man page acl(5) (POSIX ACLs)

406 questions

votes

2 answers

Linux: an easy and elegant way to find all files with acl set?

I want to find all files with acl set. I know this dirty solution: for find all files with acl set in dir. /etc sudo ls -lhR /etc|grep + Someone know a more elegant solution?

acl

asked Jun 18 '21 at 19:41

elbarna

12,695

votes

1 answer

Can not explain ACL behavior

So this is situation: got server for web-developers. There are many developers. All developers + PHP + Apache belongs to www group. There is a development directory - development. The goal is that every file in development directory has 755…

acl

asked Nov 21 '12 at 09:20

Katafalkas

votes

2 answers

Why don't I have read access to files with modified ACL?

My aim is to allow read access to folder /var/www/mysite/ only for users in group www-data using a default ACL. This works for a regular ACL, but not for a default ACL. Why? This is how I did it: I am logged on as user www-data who is in group…

acl

asked Sep 06 '13 at 09:42

Hurrdurrfurr

votes

1 answer

Permissions set on new files and folders by default ACLs

I want to set up default permission inside a folder, so that all new created folders and files have this default permission. So I did some research and the best thread I found was this one. So I came up with this little "test": #!/bin/bash #…

acl

asked Aug 26 '16 at 09:15

toddeTV

votes

1 answer

setfacl not giving permission to the specified user

I have this weird issue, I'm trying to wrap my mind around acl to give some developers write access to a few files in a folder This is an example folder structure, I have a settings.local.php file there, and I'm giving it 000 permissions with chmod,…

acl

asked Jun 20 '22 at 02:41

Radius

votes

0 answers

acl not overriding unix rights?

I have a folder with UNIX rights that forbid access to me : ls -l Sources-labo drwxrwxrw-+ 6 nobody applications 73728 févr. 25 13:25 Sources-labo groups users vault but the ACL are set so that I should have access anyway (because of the…

acl

asked Feb 25 '14 at 13:21

user201680

votes

1 answer

setfacl -m doesn't add permission to that of the traditional file permissions?

There is a directory /test/test2/. Its owner is root and the group is test and the permission is drwxr-xr-x. I executed setfacl -m group:test:w ./ in that directory. Now, as the user test whose groups includes test, if I run getfacl ./ in that…

acl

asked Dec 06 '22 at 17:23

Damn Vegetables

1,377

votes

0 answers

How do I specify a relative change to ACL of current user/group?

I have a directory that already might have some subdirectory configured rwx for www-data, but I want to make a final pass and ensure www-data has a full read access on the full directory. All these are part of some bash scripting, and I need to…

acl

asked Feb 12 '16 at 06:13

vaab

votes

2 answers

how to restrict a user to access the file

I have created a file which resides inside my directory on a unix server. People have sudo privileges. How can I restrict them to read that file (even when they have sudo previleges) ?

acl

asked Jan 13 '16 at 15:36

anurag

vote

2 answers

How to remove directory flags on linux?

I have a folder called "post", when I write getfacl post I get these results: # file: post # owner: www-data # group: ftpgroup # flags: -s- user::rwx group::rwx other::r-x default:user::rwx default:group::rwx default:other::r-x As you can see there…

acl

asked Dec 03 '18 at 21:24

stramin

vote

1 answer

setfacl fails on files created by Apache

I have a directory owned by my user vagrant. The webserver (and web application) run as www-data. Both users need to create and modify directories and files in this directory, regardless of who created them. As vagrant I can modify files created by…

acl

asked Apr 22 '16 at 11:00

PeterB

votes

1 answer

User cannot write to directory after granting permission with setfacl

EDIT: I forgot to add /mnt/storage has been mounted using mergerfs (pooling 2 drives which are formatted as ext4) I am running Lubuntu 22.04.2 and have run the following commands (note the user radarr belongs to the group media): sudo setfacl -Rm …

acl

asked May 02 '23 at 15:29

ali

votes

1 answer

Share access between users

I need to give a user access to an other directory (that is not owned by him). e.g. User sam with home /home/sam needs to access /var/www/html. I see multiple ways of doing this. match the rights match the ownership create a group for both ACLs I…

acl

asked Sep 16 '19 at 09:08

chris01

votes

2 answers

Do we have log for ACL ..?

I would like to know is there any way to list the ACL of particular user for all files. Example, for cronjob we have details in /var/spool/cron/. In the same way does ACL store the info anywhere?

acl

asked Jan 17 '18 at 06:29

Siva

9,077

votes

1 answer

Other acl manipulation executables than getfacl/setfacl?

I am familiar with setfacl/getfacl. However, I am wondering if there are any other executables/packages that maintain similar functionality with regards to manipulating acl. I am not looking for anything in particular, I am trying to contemplate…

acl

asked Dec 05 '13 at 09:59

MetaChrome