Hi,

I don't know why i has this problem so please help me out.
On my server in /home folder, the security right on all user home's folder has been changed
e.g:
drwx--x--x 3 user1 user ...
to
drwx--x--x+ 3 user1 user ...

and the result is no one can access my server via FTP as i've configured this server as FTP server. I don't know why it happens. I've executed some command that could change it back but no luck (chmod -R 711 /home/* or chown). I notice that user can not log in when their home folder got the "+" sign so what is it and how can i fixed this problem? Any idea is really appreciated.

Please note that this isn't urgent for anyone but you....please don't post things as urgent. We volunteer our time to help folks.........

In your /home folder, try putting things as 755 ("chmod 755 /home/*"). Don't know how you had it set before, but see if that works....

So sorry but it doesn't work. Only drwxr-xr-x has changed. The "+" symbol is still right beside the security right.

Hmm, something else might be getting in the way here. SELinux?

Mons

I don't think the problem comes from SELinux. This is my home folder structure:

/home/student/userxxxx
/home/lecture/userxxxx

In each subfolder i have about 50-100 users. While /home/lecture/userxxxx has no change, only /home/student/userxxx has been changed. Any idea?

Referring to info ls, section "What info is listed," I read:
Just as Microsoft Windows "outgrew" its MS-DOS underpinnings (where the only sense of "security" was a "Locked" flag...), Linux filesystems also "outgrew" the good ol' -rwxr--r-- permissions mask. Both of them adopted the notion of access control lists, as discussed (in the case of Linux) at man acl.

The Linux ACL implementation was designed to be aware that "applications which are not aware of the existence of ACLs, or that have no particular need to be so aware, must continue to work." This is why the ls command continues to present you with "that familiar set of flags," but with the "+" character to clue you that something beyond that is really going on.

Start with the getfacl command. (Thus suggests the all-knowing apropos acl ...) You need to see the entire set of access-controls that really apply to this file, "not just the mask." The reason why you don't understand why you're getting the "permission denied" message is that more than 'just the mask' is controlling the effective permissions to this file.

Now... the ACL feature was... shall we diplomatically say... "designed by committee."

So, "I am going to be very mean to you now," and invite you to read the man acl page and tell me if you understand a word of it. (If you do, I have a leather-bound copy of Robert's Rules of Order to give you.)

Actually, there's a pretty good explanation here: http://www.linuxtopia.org/online_boo...5_ch-acls.html

Guy, this is newbie section and I'm just working with linux for a few months. Reading the man page is something we must do if we want to understand about the problem and how to deal with it in the future but for now i need some one could show me how to solve problem. Really appreciate you guys give your time to help me.

Thank sundialsvcs; chrism01: Now i know what is the problem as someone has modified file with ACL. One command can solve this problem. At least it works for me:
#setfacl --remove-all /home/* . Thanks again