LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-16-2019, 02:19 AM   #1
mr.aghazade
LQ Newbie
 
Registered: Jul 2019
Posts: 2

Rep: Reputation: Disabled
Thumbs up Linux ACL odd output


hi friends
i have a senario but i cant implement that
i create a file with some text in it & remove all permissions :
Code:
# echo "hi Linux" > myFile
# chmod a-rwx myFile
# ls -l myFile
---------- 1 root root 9 Jul 15 11:41 myFile
i have a user with name reza & i want only reza user can read this file & do this via ACL(Access Control List)

Code:
# setfacl -m u:reza:r myFile
output of ls -l is very ODD:

Code:
# ls -l myFile
----r-----+ 1 root root 9 Jul 15 11:41 myFile
read permission added for root group ,,,,what is it mean ?

Code:
# getfacl myFile
# file: myFile
# owner: root
# group: root
user::---
user:reza:r--
group::---
mask::r--
other::---
& in output of getfacl command, what is the mask ??

thank you for answring...
 
Old 07-16-2019, 10:46 AM   #2
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.6
Posts: 3,454

Rep: Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157
Code:
setfacl -m u:reza:r myFile
According to the man page, this grants read access to an "additional" user. Can that user now access the file?

See man getfacl for what the mask is/means.
 
Old 07-18-2019, 08:35 AM   #3
mr.aghazade
LQ Newbie
 
Registered: Jul 2019
Posts: 2

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by scasey View Post
Code:
setfacl -m u:reza:r myFile
According to the man page, this grants read access to an "additional" user. Can that user now access the file?

See man getfacl for what the mask is/means.
thank you for aswering...
yes,,the Additional user can access data ,

my question is about realation between ACL & group user.
because ACL permission shown as group permission...
 
Old 07-18-2019, 08:47 AM   #4
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.6
Posts: 3,454

Rep: Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157Reputation: 1157
It's my understanding that's what access control lists are about; group permissions.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
ACL (access and default access ACL) nocandcan Linux - Security 12 04-13-2015 04:09 AM
ACL vs default ACL makupl Linux - Newbie 1 09-26-2013 01:11 AM
problem with samba and ACL ,ACL does not work as I want golden_boy615 Linux - Server 1 12-18-2011 09:18 AM
Why does the ACL of a file created under a directory differ from the default ACL sctebnt Linux - Security 5 12-02-2011 08:13 AM
iptables acl versus cisco acl id_viorel Linux - Security 1 04-09-2008 05:00 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:04 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration