From: Joe Dierker (ja_dierker@hotmail.com)
Date: Thu Sep 11 2003 - 11:48:22 EDT
I am running the Solaris default ftp daemon on a Solaris 7 server. I have
created an ftp account and set default ACL's on that user's ftp directory, to
allow another user read/write access to the ftp user's files. If I touch a
file, or copy a file into the directory structure, including subdirs, the
default ACL perms are applied and it works as expected. However, if I ftp a
file into the structure, only a portion of the ACL rules get applied. By that
I mean the secondary user's user perms are applied, but the default mask rules
are not. This renders the ACL useless. The results of getfacl's on both
situations follow.
I found a note on a similar situation from many years ago (1998) in which
Casper Dik suggested that there was a bug, but no bug ID was referenced. I
have not had any luck finding an answer on SunSolve. Anyone have any ideas?
getfacl report on a "touched" file:
theserver:# touch testfile
theserver:# getfacl testfile
# file: testfile
# owner: root
# group: other
user::rw-
user:datarep:rwx #effective:rw-
<--------Looks OK
group::--- #effective:---
mask:rw-
<--------Looks OK
other:---
getfacl on an "ftp'd" file:
theserver:# getfacl ftpfile
# file: ftpfile
# owner: ftpuser
# group: ftpuser
user::rw-
user:datarep:rwx #effective:---
<--------Problem
group::--- #effective:---
mask:---
<--------Problem
other:---
The user's directory ACL looks like:
theserver:# getfacl .
# file: .
# owner: ftpuser
# group: ftpuser
user::rwx
user:datarep:rwx #effective:rwx
group::--- #effective:---
mask:rwx
other:---
default:user::rwx
default:user:datarep:rwx
default:group::---
default:mask:rwx
default:other:---
Thanks in advance.
Joe Dierker
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:27:06 EDT