equal
deleted
inserted
replaced
|
1 .. -*- coding: utf-8; -*- |
|
2 .. include:: HEADER.rst |
|
3 |
|
4 ====== |
|
5 ACL. |
|
6 ====== |
|
7 .. contents:: |
|
8 |
|
9 Managing ACL permissions. |
|
10 ========================= |
|
11 |
|
12 Set permission:: |
|
13 |
|
14 $ sudo setfacl -m u:nobody:rwx ~/tmp/dir |
|
15 $ sudo setfacl -m g:nogroup:rwx ~/tmp/dir |
|
16 |
|
17 Review permissions:: |
|
18 |
|
19 $ sudo getfacl ~/tmp/dir |
|
20 |
|
21 Remove specific permissions:: |
|
22 |
|
23 $ sudo setfacl -x u:test ~/tmp/dir |
|
24 |
|
25 Remove all ACL permissions:: |
|
26 |
|
27 $ sudo setfacl -b ~/tmp/dir |
|
28 |
|
29 Remove default ACL:: |
|
30 |
|
31 $ sudo setfacl -k ~/tmp/dir |
|
32 |
|
33 Backup and restore ACL:: |
|
34 |
|
35 $ sudo getfacl ~/tmp/dir >~/tmp/backup.acl |
|
36 $ sudo setfacl --restore=~/tmp/backup.acl |
|
37 |
|
38 Add default ACL to directory to make ACL permission inheritance:: |
|
39 |
|
40 $ sudo setfacl -m -d u:nobody:rwx /srv/www |
|
41 $ sudo setfacl -m u:nobody:rwx /srv/www |
|
42 |
|
43 .. NOTE:: default ACL is set only on directories and is applied only to |
|
44 directory children. So you should explicitly add permission to |
|
45 directory itself! |
|
46 |