default ACLs

Mikel Ward mward@aconex.com
Thu Oct 22 23:45:00 GMT 2009


Hi All

Default ACLs don't seem to work as they would on Linux, or for that
matter as they do for files created via Windows Explorer.

Is this expected?

Administrator@hostname:/
$ mkdir newdir

Administrator@hostname:/
$ getfacl newdir
# file: newdir
# owner: Administrator
# group: None
user::rwx
group::r-x
mask:rwx
other:r-x
default:user::rwx
default:group::r-x
default:other:r-x

Administrator@hostname:/
$ setfacl -m 'd:g:dbas:rwx,d:g:SYSTEM:rwx' newdir

Administrator@hostname:/
$ getfacl newdir
# file: newdir
# owner: Administrator
# group: None
user::rwx
group::r-x
mask:rwx
other:r-x
default:user::rwx
default:group::r-x
default:group:SYSTEM:rwx
default:group:dbas:rwx
default:mask:rwx
default:other:r-x

Administrator@hostname:/
$ touch newdir/newfile

Administrator@hostname:/
$ getfacl newdir/newfile
# file: newdir/newfile
# owner: Administrator
# group: None
user::rw-
group::r--
mask:rwx
other:r--

Irrespective of CYGWIN=(null), CYGWIN=ntsec, or CYGWIN=nontsec.

If I create a file in Windows Explorer, its ACLs are:
$ getfacl newdir/newfile2
# file: newdir/newfile2
# owner: Administrators
# group: None
user::rwx
group::r-x
group:SYSTEM:rwx
group:Users:r-x
group:dbas:rwx
mask:rwx
other:r-x

Basically I'm looking for a way to ensure the right users and groups can read files that I create.

Thanks

Mikel



--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple



More information about the Cygwin mailing list