Permission denied - setfacl - must give permissions all the way down?

From: Coronel, David (david.coronel@melochemonnex.com)
Date: Fri Jun 02 2006 - 09:56:11 EDT


Good day,

I am trying to give read access to one particular user to the
files inside a folder. I am using default access lists to do so. Here is what
I have:

I am in folder /disk1/oradata/DMC4_AUDIT

I use the command:
setfacl -s
user::rwx,group::r-x,mask:r-x,other:r-x,default:user::rwx,default:group::r--,
default:mask:rwx,default:ot
her:---,default:user:foo:r-x,user:foo:r-x .
Then I do a getfacl:

# getfacl .

# file: .
# owner: oracle
# group:
osdba
user::rwx
user:foo:r-x #effective:r-x
group::r-x
#effective:r-x
mask:r-x
other:r-x
default:user::rwx
default:user:foo:r-x
default:group::r--
default:mask:rwx
default:other:---

It looks like user
foo has read and execute access to my folder and to all future files in that
folder. However if I su to foo and try to change folder:

# su - foo
$ cd
/disk1/oradata/DMC4_AUDIT
bash: cd: /disk1/oradata/DMC4_AUDIT: Permission
denied

Why do I get a permission denied? The user foo does not have execute
access to the folders below /disk1/oradata/DMC4_AUDIT. Is that why? Must I
give execute access to foo for all folders under this one?

Thank you in
advance,

David Coronel
Administrateur de Systhmes UNIX
Meloche Monnex
Phone: (514) 385-2222 ext:3439
Fax: (514) 385-2173
Mailto:
david.coronel@melochemonnex.com

-----Original Message-----
From:
sunmanagers-bounces@sunmanagers.org
[mailto:sunmanagers-bounces@sunmanagers.org] On Behalf Of Dave Markham
Sent:
Friday, June 02, 2006 8:45 AM
To: sunmanagers
Subject: Netra pci slot use
People im trying to work out if a Netra T1 i have has its pci slot spare so i
can put a Gig Ethernet card in it.

The unit is remote located so i cant
just eyeball it.

>From prtdiag i see the following :-

System
Configuration: Sun Microsystems sun4u Netra T1 200 (UltraSPARC-IIe 500MHz)
System clock frequency: 100 MHz Memory size: 1024 Megabytes
========================= CPUs =========================
Run Ecache CPU CPU
Brd CPU Module MHz MB Impl. Mask

---
---  -------  -----  ------  ------  ----
 0     0     0      500     0.2
13       1.4
========================= IO Cards =========================
Bus   Freq
Brd  Type  MHz   Slot  Name                              Model
---  ----  ----  ----  --------------------------------
----------------------
 0   PCI    66     5   network-pci108e,1101
SUNW,pci-eri
 0   PCI    66     5   usb-pci108e,1103.1
 0   PCI    66     8
scsi-glm/disk (block)             Symbios,53C896
 0   PCI    66     8
scsi-glm/disk (block)             Symbios,53C896
 0   PCI    66    12
network-pci108e,1101              SUNW,pci-eri
 0   PCI    66    12
usb-pci108e,1103.1
 0   PCI    66    13   ide-pci10b9,5229/disk (block)
No
failures found in System
But am unsure how to tell for sure it is not
filled. I think it isnt filled from above as can account for those items being
onboard.
Anyone help?
Cheers
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
-----------------------------------------
AVIS DE CONFIDENTIALITE
Ce courriel, ainsi que tout renseignement ci-inclus, destini
uniquement au(x)
destinataire(s) susmentionni(s),  est
confidentiel.  Si vous n'jtes pas le
destinataire privu ou un
agent responsable de la livraison de ce courriel,
tout examen,
divulgation, copie, impression, reproduction, distribution ou
autre
utilisation de toute partie de ce courriel est strictement interdit
de
mjme que toute action ou manquement ` l'igard de celui-ci.
Si vous avez regu
ce message par erreur ou sans autorisation,
veuillez en aviser immidiatement
l'expiditeur par retour de
courriel ou par un autre moyen et supprimez
immidiatement et
entihrement cette communication de tout systhme
ilectronique.
NOTICE OF CONFIDENTIALITY
This communication, including
any information transmitted with it,
is intended only for the use of the
addressee(s) and is
confidential.  If you are not an intended recipient or
responsible
for delivering the message to an intended recipient, any review,
disclosure, conversion to hard copy, dissemination, reproduction or
other use
of any part of this communication is strictly prohibited,
as is the taking or
omitting of any action in reliance upon this
communication.  If you received
this communication in error or
without authorization please notify us
immediately by return e-mail
or otherwise and permanently delete the entire
communication from
any computer, disk drive, or other storage medium.
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers


This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:40:00 EDT