Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I think a complete explanation of this can be found at http://www.suse.de/~agruen/acl/linux-acls/online/ where the author Andreas Grünbacher explain in details the differences of the two. The author was involved in the design and implementation of extended attributes and ACLs on Linux and he goes in details that makes this issue clear for the reader. Hope this can helps.
can setfacl be accomplished by using chown and chomod?
I ask because I am using puppet to set file permissions and setfacl is not a native puppet command
Read the LQ Rules...you re-opened a thread that had been closed for EIGHT YEARS, hijacked it with a different question, and double-posted that question.
"Way back in the 1970's, what seemed good-enough to the programmers at Bell Labs was a simple "file permissions mask." Everything had a "user-id" and a "group-id" and access was very-simply determined by rwxrwxrwx. Simple, tiny, and – at the time – it worked.
As time went on, various people (working among various operating systems and file systems) recognized the need for more-sophisticated forms of access control. Hence, the access control list (ACL).
Generally speaking, ACLs supersede file permission masks.
Alas, "the fly in the ointment" is that not everyone who dreamed-up "an ACL system" decided to do it in exactly the same way. Hence, when you work with ACLs you will encounter various mapping systems which try their best to accommodate software which expects ACLs to work in one particular way.
Nevertheless, ACLs are very important because they do compensate for many of the pragmatic deficiencies of Unix's original concepts – which were perfectly adequate for a PDP-7! (And of course, the very similar original concepts devised for CP/M, MS-DOS, etcetera.)
You need to be pragmatically aware of, and pragmatically conversant in, both concepts as they apply to your particular operating environment(s), whatever they might be.
Last edited by sundialsvcs; 09-29-2017 at 12:49 PM.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.