zfs discuss - Feb 2009 - At Wits End for ZFS Permission Settings

All;

I do apologize for making this query in this list. But I am at my wits end.

I have a directory like so

$ ls -l
total 47
drwxr-xr-x  19 admin    admin         23 Feb 27 17:52 Named
drw-r-----  74 admin    admin        556 Feb 25 03:46 Not Sorted <--- 
Directory in Question

$ ls -dv "Not Sorted"
drw-r-----  74 admin    admin        556 Feb 25 03:46 Not Sorted
     0:owner@:execute:deny
     1:owner@:list_directory/read_data/add_file/write_data/add_subdirectory
         /append_data/write_xattr/write_attributes/write_acl/write_owner
         :allow
     2:group@:add_file/write_data/add_subdirectory/append_data/execute:deny
     3:group@:list_directory/read_data:allow
     4:everyone@:list_directory/read_data/add_file/write_data
         /add_subdirectory/append_data/write_xattr/execute/write_attributes
         /write_acl/write_owner:deny
     5:everyone@:read_xattr/read_attributes/read_acl/synchronize:allow

But I cannot access the directory "Not Sorted"  as user admin  AT ALL.

I changed my root path to ensure that chmod points to the chmod in 
/usr/bin as opposed to /usr/gnu/bin

(sorry, but i really think that placing the GNU chmod first in the 
default root path is a real dum idea)

I then did (as root)

#chmod -R A- "Not Sorted"

in an attempt to remove all ACL.

Didn''t work.

I tried setting the entire ACL manually via (again as root)

#chmod -R A=owner@:read_data/write_data:allow,group@:read_data:allow 
"Not Sorted"

drw-r-----  74 admin    admin        556 Feb 25 03:46 Not Sorted <--- 
Directory in Question

Didn''t work either. User admin is still unable to enter.

Again as root

#chmod -R A=owner@:read_data/write_data:allow,group@:read_data:allow 
"Not Sorted"

#ls -dv "Not Sorted"
drw-r-----+ 74 admin    admin        556 Feb 25 03:46 Not Sorted
     0:user:admin:list_directory/read_data/add_file/write_data:allow
     1:group@:list_directory/read_data:allow
     2:owner@:execute:deny
     3:owner@:list_directory/read_data/add_file/write_data/add_subdirectory
         /append_data/write_xattr/write_attributes/write_acl/write_owner
         :allow
     4:group@:add_file/write_data/add_subdirectory/append_data/execute:deny
     5:group@:list_directory/read_data:allow
     6:everyone@:list_directory/read_data/add_file/write_data
         /add_subdirectory/append_data/write_xattr/execute/write_attributes
         /write_acl/write_owner:deny
     7:everyone@:read_xattr/read_attributes/read_acl/synchronize:allow

User admin STILL cannot go in!

What gives?????

Warmest Regards
Steven Sim

Hi Steven,

I don''t have access to my usual resources to test the ACL syntax but
I think the root cause is that you don''t have execute permission
on the "Not Started" directory. 

Try the chmod syntax again but this time include execute:allow for
admin on "Not Sorted" or add it like this:

# chmod A+user:admin:execute:allow "Not Sorted"

See chmod.1 for more info.

Cindy

----- Original Message -----
From: Steven Sim <unixandme at gmail.com>
Date: Saturday, February 28, 2009 9:26 am
Subject: [zfs-discuss] At Wits End for ZFS Permission Settings
To: zfs-discuss at opensolaris.org
> All;
> 
> I do apologize for making this query in this list. But I am at my wits 
> end.
> 
> I have a directory like so
> 
> $ ls -l
> total 47
> drwxr-xr-x  19 admin    admin         23 Feb 27 17:52 Named
> drw-r-----  74 admin    admin        556 Feb 25 03:46 Not Sorted <--- 
> Directory in Question
> 
> $ ls -dv "Not Sorted"
> drw-r-----  74 admin    admin        556 Feb 25 03:46 Not Sorted
>     0:owner@:execute:deny
>     1:owner@:list_directory/read_data/add_file/write_data/add_subdirectory
>         /append_data/write_xattr/write_attributes/write_acl/write_owner
>         :allow
>     2:group@:add_file/write_data/add_subdirectory/append_data/execute:deny
>     3:group@:list_directory/read_data:allow
>     4:everyone@:list_directory/read_data/add_file/write_data
>         /add_subdirectory/append_data/write_xattr/execute/write_attributes
>         /write_acl/write_owner:deny
>     5:everyone@:read_xattr/read_attributes/read_acl/synchronize:allow
> 
> But I cannot access the directory "Not Sorted"  as user admin  AT
ALL.
> 
> I changed my root path to ensure that chmod points to the chmod in 
> /usr/bin as opposed to /usr/gnu/bin
> 
> (sorry, but i really think that placing the GNU chmod first in the 
> default root path is a real dum idea)
> 
> I then did (as root)
> 
> #chmod -R A- "Not Sorted"
> 
> in an attempt to remove all ACL.
> 
> Didn''t work.
> 
> I tried setting the entire ACL manually via (again as root)
> 
> #chmod -R A=owner@:read_data/write_data:allow,group@:read_data:allow 
> "Not Sorted"
> 
> drw-r-----  74 admin    admin        556 Feb 25 03:46 Not Sorted <--- 
> Directory in Question
> 
> Didn''t work either. User admin is still unable to enter.
> 
> Again as root
> 
> #chmod -R A=owner@:read_data/write_data:allow,group@:read_data:allow 
> "Not Sorted"
> 
> #ls -dv "Not Sorted"
> drw-r-----+ 74 admin    admin        556 Feb 25 03:46 Not Sorted
>     0:user:admin:list_directory/read_data/add_file/write_data:allow
>     1:group@:list_directory/read_data:allow
>     2:owner@:execute:deny
>     3:owner@:list_directory/read_data/add_file/write_data/add_subdirectory
>         /append_data/write_xattr/write_attributes/write_acl/write_owner
>         :allow
>     4:group@:add_file/write_data/add_subdirectory/append_data/execute:deny
>     5:group@:list_directory/read_data:allow
>     6:everyone@:list_directory/read_data/add_file/write_data
>         /add_subdirectory/append_data/write_xattr/execute/write_attributes
>         /write_acl/write_owner:deny
>     7:everyone@:read_xattr/read_attributes/read_acl/synchronize:allow
> 
> User admin STILL cannot go in!
> 
> What gives?????
> 
> Warmest Regards
> Steven Sim
> 
> 
> 
> _______________________________________________
> zfs-discuss mailing list
> zfs-discuss at opensolaris.org
> http://mail.opensolaris.org/mailman/listinfo/zfs-discuss