Scene:
the company to a new server-side developer, the company required, new staff seven days assessment period, new staff resources to download linux on
new staff can not be placed inside the server development team, or have the authority to write, not on the other group, there's no read permission,
then how to solve, given the new staff ACL permissions
ACL permissions
ACL permissions necessary to support partition, linux mount partition by default have permission to open the ACL
is similar to the concept of windows is not set, the user gives permission directly
mkdir / project /: root user to create a folder, the resource folder
useradd xiaoming: creating a user, the server developer
passwd xiaoming: change your password
groupadd student: Create a group
gpasswd -a xiaoming tgroup: the xiaoming added to tgroup group, the server group
chown root: tgroup / project /: owning group into tgroup
chown 770 / Project /
useradd shiting: new developers
setfacl -mu: shiting: rx / project /: Listen to users shiting given rx permission, u: user: permissions -m : add acl rights
View:
the getfacl / Project /: View acl rights
1. One problem:
Through the above setting, to the new / project directory has rights, but for which no files, using a recursive manner:
recursion:
the setfacl -mu: shiting: -R & lt RX / project /:
2. Question two
in / project for the newly added files and folders shiting user or not ACL permissions,
Solution:
Default ACL permissions: added file will increase ACL permissions:
setfacl -m d:u:shiting:rx -R /project
3. Question three
if you create a file between recursive permissions and default ACL permissions, and no ACL permissions, but also manually set about
- setfacl -mg: shiting: rx / project /: Listen to users shiting given rx permission, g: group settings: permissions -m: permission to add acl
