LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 04-01-2006, 06:26 PM   #1
HGeneAnthony
Member
 
Registered: Mar 2003
Posts: 178

Rep: Reputation: 30
How can I enable Posix ACL in Debian


I would like to use the Posix ACL in Debian so recompiled my kernel with the option for "reiserfs posix access control lists" and download the acl package for the commands to work with it. However, although setfacl seems to work for the standard owner/group/users system when I specify a user ala:

setfacl -m user:geneanthony:rwx filename

I get an error telling me operation not supported. I don't know if there's something else I'm supposed to do to get this going. Any help?
 
Old 04-01-2006, 06:58 PM   #2
nx5000
Senior Member
 
Registered: Sep 2005
Location: Out
Posts: 3,307

Rep: Reputation: 53
Have you remounted the partition with the appropriate option?
Code:
mount /home -o remount,acl
 
Old 04-01-2006, 07:02 PM   #3
HGeneAnthony
Member
 
Registered: Mar 2003
Posts: 178

Original Poster
Rep: Reputation: 30
Reply

No I didn't. So I need to remount all the filesystems with these options?
 
Old 04-01-2006, 07:03 PM   #4
nx5000
Senior Member
 
Registered: Sep 2005
Location: Out
Posts: 3,307

Rep: Reputation: 53
Yep at least this is needed.
 
Old 04-01-2006, 07:14 PM   #5
HGeneAnthony
Member
 
Registered: Mar 2003
Posts: 178

Original Poster
Rep: Reputation: 30
Reply

Thank you for your help that fixed it. I didn't see it listed on the tutorials I saw. Thanx again!
 
Old 04-01-2006, 07:19 PM   #6
nx5000
Senior Member
 
Registered: Sep 2005
Location: Out
Posts: 3,307

Rep: Reputation: 53
Posix ACL is a big step for administration IMHO.
And if you don't want to bother with the command line, kde 3.5 integrates posix acl manipulation in konqueror (if you have kde on your desktop)
 
Old 04-01-2006, 08:15 PM   #7
HGeneAnthony
Member
 
Registered: Mar 2003
Posts: 178

Original Poster
Rep: Reputation: 30
Reply

Well that's good to know at least. Debian comes with 3.3 and I prefer keeping within stable. Under Windows, I like the fine grain that NTFS allows you however I'm having some weird problems with Posix's ACL. For example, even though I give a user no rights in the standard owner/group/others model and no rights in the posix ACL the user was able to delete a file. Even though I give the owner full access in both the standard and posix the user wasn't able to delete the file. The only difference was when they were able to delete the file the user was a member of the group owner, when they weren't they couldn't. The permissions shouldn't have allowed either action at the time. I don't know the problem and I'm trying to mix it up to find out what the problem is.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: ACL(Access Control List) Configuration in Debian LXer Syndicated Linux News 0 04-01-2006 12:12 AM
POSIX and ACL on folders BruceC Linux - Newbie 1 10-06-2005 03:23 PM
POSIX and ACL on folders BruceC Other *NIX 0 10-05-2005 02:57 PM
posix acl Ammad Linux - General 3 03-20-2005 06:35 PM
enable pthreads? (posix threads) cpluspaul Slackware 5 06-29-2004 06:56 AM


All times are GMT -5. The time now is 01:29 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration