Greetings, First off, I''m new to this and don''t quite understand what I''m doing. I would like different groups in my workplace to have their own folders. I would like each file and folder underneath the parent folders to inherit the ACL and group ownership of the directory. I''m using ACL''s in Ubuntu (ext4) right now and having the problem when someone copies a file from their personal flash drive (People take work home at night and bring it back in the morning) to the drive with ACL''s it doesn''t inherit the ACL''s. SetGID is setting the proper group id though, so this is working. I''ve used cp in gnome-termimal and drag-n-drop w/ Gnome''s filemanager, Nautilus, both have the same effect. When a file is created in the folder, it works great, all the ACL''s and ownership is perfect. I''m wondering if I move to ZFS (Opensolaris or Indiana or something ZFS compatible) and use the ACL''s in this operating system will it work in the manner I''m anticipating? ie files inherit ACL''s no matter if they are created in the folder or copied to the folder, the ACL is the same. Am I headed the wrong direction? I need some hand-holding. Thank you, -Andy
On 10/23/10 08:03 AM, Andy Graybeal wrote:> Greetings, > First off, I''m new to this and don''t quite understand what I''m doing. > > I would like different groups in my workplace to have their own folders. I > would like each file and folder underneath the parent folders to inherit the > ACL and group ownership of the directory. > > I''m using ACL''s in Ubuntu (ext4) right now and having the problem when > someone copies a file from their personal flash drive (People take work home > at night and bring it back in the morning) to the drive with ACL''s it > doesn''t inherit the ACL''s. SetGID is setting the proper group id though, so > this is working. > > I''ve used cp in gnome-termimal and drag-n-drop w/ Gnome''s filemanager, > Nautilus, both have the same effect. > > When a file is created in the folder, it works great, all the ACL''s and > ownership is perfect. > > I''m wondering if I move to ZFS (Opensolaris or Indiana or something ZFS > compatible) and use the ACL''s in this operating system will it work in the > manner I''m anticipating? ie files inherit ACL''s no matter if they are > created in the folder or copied to the folder, the ACL is the same.Yes, if you set up the directory ACLs for inheritance (include :fd: when you specify the ACEs), the ACLs on copied files will be inherited from the parent folder (probably best not to use cp -p). Alan> Am I headed the wrong direction? I need some hand-holding. > > Thank you, > -Andy > _______________________________________________ > zfs-discuss mailing list > zfs-discuss at opensolaris.org > http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
> Yes, if you set up the directory ACLs for inheritance (include :fd: > when you specify the ACEs), the ACLs on copied files will be inherited > from the parent folder (probably best not to use cp -p). > > AlanAlan, thank you for the response. For my example, I have two users that need to share files, candida and andy. I''ve created both users andy and candida, I''ve created a finance group I''ve added andy and candida to the ''finance'' group I''ve created /srv/Finance directory I''ve set: chown candida:finance /srv/Finance I''ve then done: /bin/chmod g+s /srv/Finance Then I''ve done: /bin/chmod A=owner@:full_set:fd:allow,group@:full_set:fd:allow,everyone@:read_set:fd:allow Finance When I touch files in the Finance folder they don''t seem to inherit the group''s "Full Set". The user candida can read but not edit files I make as the user andy. what am I doing wrong? is it a umask thing? my umask is 0022, and I thought ACL''s override umask. Please help my confusion :) -Andy
Hi Andy, What is the setting for the aclinherit property? I think you want to set this property to passthrough. Thanks, Cindy On 10/26/10 07:25, Andy Graybeal wrote:>> Yes, if you set up the directory ACLs for inheritance (include :fd: >> when you specify the ACEs), the ACLs on copied files will be inherited >> from the parent folder (probably best not to use cp -p). >> >> Alan > > Alan, thank you for the response. > > For my example, I have two users that need to share files, candida and > andy. > > I''ve created both users andy and candida, > I''ve created a finance group > I''ve added andy and candida to the ''finance'' group > I''ve created /srv/Finance directory > I''ve set: chown candida:finance /srv/Finance > I''ve then done: /bin/chmod g+s /srv/Finance > Then I''ve done: /bin/chmod > A=owner@:full_set:fd:allow,group@:full_set:fd:allow,everyone@:read_set:fd:allow > Finance > > When I touch files in the Finance folder they don''t seem to inherit the > group''s "Full Set". The user candida can read but not edit files I make > as the user andy. > > what am I doing wrong? is it a umask thing? my umask is 0022, and I > thought ACL''s override umask. > > Please help my confusion :) > > -Andy > _______________________________________________ > zfs-discuss mailing list > zfs-discuss at opensolaris.org > http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
On 10/26/10 06:25 AM, Andy Graybeal wrote:>> Yes, if you set up the directory ACLs for inheritance (include :fd: >> when you specify the ACEs), the ACLs on copied files will be inherited >> from the parent folder (probably best not to use cp -p). >> >> Alan > > Alan, thank you for the response. > > For my example, I have two users that need to share files, candida and andy. > > I''ve created both users andy and candida, > I''ve created a finance group > I''ve added andy and candida to the ''finance'' group > I''ve created /srv/Finance directory > I''ve set: chown candida:finance /srv/Finance > I''ve then done: /bin/chmod g+s /srv/Finance > Then I''ve done: /bin/chmod > A=owner@:full_set:fd:allow,group@:full_set:fd:allow,everyone@:read_set:fd:allow > Finance > > When I touch files in the Finance folder they don''t seem to inherit the > group''s "Full Set". The user candida can read but not edit files I make as > the user andy.I suspect you want aclinherit=passthrough Alan> what am I doing wrong? is it a umask thing? my umask is 0022, and I thought > ACL''s override umask.> Please help my confusion :) > > -Andy > _______________________________________________ > zfs-discuss mailing list > zfs-discuss at opensolaris.org > http://mail.opensolaris.org/mailman/listinfo/zfs-discuss