SUMMARY Permission denied - setfacl - must give permissions all the way down?

From: Coronel, David <david.coronel_at_melochemonnex.com>
Date: Fri Jun 02 2006 - 10:34:06 EDT
Thanks to Charles Morris who confirmed the user must be able to browse all the
subfolders in order to reach the final subfolder.

I will keep my default
access lists to give the user access and will put him in the group osdba that
has access to all files below this final subfolder.

David Coronel
Administrateur de Systhmes UNIX
Meloche Monnex
Phone: (514) 385-2222
ext:3439
Fax: (514) 385-2173
Mailto: david.coronel@melochemonnex.com
-----Original Message-----
From: sunmanagers-bounces@sunmanagers.org
[mailto:sunmanagers-bounces@sunmanagers.org] On Behalf Of Coronel, David
Sent: Friday, June 02, 2006 9:56 AM
To: sunmanagers
Subject: Permission
denied - setfacl - must give permissions all the way down?


Good day,

I
am trying to give read access to one particular user to the files inside a
folder. I am using default access lists to do so. Here is what I have:

I am
in folder /disk1/oradata/DMC4_AUDIT

I use the command:
setfacl -s
user::rwx,group::r-x,mask:r-x,other:r-x,default:user::rwx,default:group::r--,
default:mask:rwx,default:ot her:---,default:user:foo:r-x,user:foo:r-x . Then I
do a getfacl:

# getfacl .

# file: .
# owner: oracle
# group:
osdba
user::rwx
user:foo:r-x               #effective:r-x
group::r-x
#effective:r-x
mask:r-x
other:r-x
default:user::rwx
default:user:foo:r-x
default:group::r--
default:mask:rwx
default:other:---

It looks like user
foo has read and execute access to my folder and to all future files in that
folder. However if I su to foo and try to change folder:

# su - foo
$ cd
/disk1/oradata/DMC4_AUDIT
bash: cd: /disk1/oradata/DMC4_AUDIT: Permission
denied

Why do I get a permission denied? The user foo does not have execute
access to the folders below /disk1/oradata/DMC4_AUDIT. Is that why? Must I
give execute access to foo for all folders under this one?

Thank you in
advance,

David Coronel
Administrateur de Systhmes UNIX
Meloche Monnex
Phone: (514) 385-2222 ext:3439
Fax: (514) 385-2173
Mailto:
david.coronel@melochemonnex.com


-----Original Message-----
From:
sunmanagers-bounces@sunmanagers.org
[mailto:sunmanagers-bounces@sunmanagers.org] On Behalf Of Dave Markham
Sent:
Friday, June 02, 2006 8:45 AM
To: sunmanagers
Subject: Netra pci slot use
People im trying to work out if a Netra T1 i have has its pci slot spare so i
can put a Gig Ethernet card in it.

The unit is remote located so i cant
just eyeball it.

>From prtdiag i see the following :-

System
Configuration:  Sun Microsystems  sun4u Netra T1 200 (UltraSPARC-IIe 500MHz)
System clock frequency: 100 MHz Memory size: 1024 Megabytes
========================= CPUs =========================
Run   Ecache   CPU
CPU
Brd  CPU   Module   MHz     MB    Impl.   Mask
---
---  -------  -----
------  ------  ----
 0     0     0      500     0.2
13       1.4
========================= IO Cards =========================
Bus   Freq
Brd
Type  MHz   Slot  Name                              Model
---  ----  ----
----  --------------------------------
----------------------
 0   PCI    66
5   network-pci108e,1101
SUNW,pci-eri
 0   PCI    66     5
usb-pci108e,1103.1
 0   PCI    66     8
scsi-glm/disk (block)
Symbios,53C896
 0   PCI    66     8
scsi-glm/disk (block)
Symbios,53C896
 0   PCI    66    12
network-pci108e,1101
SUNW,pci-eri
 0   PCI    66    12
usb-pci108e,1103.1
 0   PCI    66    13
ide-pci10b9,5229/disk (block)

No
failures found in System


But am
unsure how to tell for sure it is not
filled. I think it isnt filled from
above as can account for those items being onboard.

Anyone help?

Cheers
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
-----------------------------------------
AVIS DE CONFIDENTIALITE
Ce
courriel, ainsi que tout renseignement ci-inclus, destini uniquement au(x)
destinataire(s) susmentionni(s),  est
confidentiel.  Si vous n'jtes pas le
destinataire privu ou un
agent responsable de la livraison de ce courriel,
tout examen,
divulgation, copie, impression, reproduction, distribution ou
autre utilisation de toute partie de ce courriel est strictement interdit de
mjme que toute action ou manquement ` l'igard de celui-ci. Si vous avez regu
ce message par erreur ou sans autorisation, veuillez en aviser immidiatement
l'expiditeur par retour de courriel ou par un autre moyen et supprimez
immidiatement et entihrement cette communication de tout systhme ilectronique.
NOTICE OF CONFIDENTIALITY

This communication, including
any information
transmitted with it,
is intended only for the use of the
addressee(s) and is
confidential.  If you are not an intended recipient or responsible for
delivering the message to an intended recipient, any review, disclosure,
conversion to hard copy, dissemination, reproduction or other use of any part
of this communication is strictly prohibited, as is the taking or omitting of
any action in reliance upon this communication.  If you received this
communication in error or without authorization please notify us immediately
by return e-mail or otherwise and permanently delete the entire communication
from any computer, disk drive, or other storage medium.
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
-----------------------------------------
AVIS DE CONFIDENTIALITE
Ce courriel, ainsi que tout renseignement ci-inclus, destini
uniquement au(x)
destinataire(s) susmentionni(s),  est
confidentiel.  Si vous n'jtes pas le
destinataire privu ou un
agent responsable de la livraison de ce courriel,
tout examen,
divulgation, copie, impression, reproduction, distribution ou
autre
utilisation de toute partie de ce courriel est strictement interdit
de
mjme que toute action ou manquement ` l'igard de celui-ci.
Si vous avez regu
ce message par erreur ou sans autorisation,
veuillez en aviser immidiatement
l'expiditeur par retour de
courriel ou par un autre moyen et supprimez
immidiatement et
entihrement cette communication de tout systhme
ilectronique.

NOTICE OF CONFIDENTIALITY

This communication, including
any information transmitted with it,
is intended only for the use of the
addressee(s) and is
confidential.  If you are not an intended recipient or
responsible
for delivering the message to an intended recipient, any review,
disclosure, conversion to hard copy, dissemination, reproduction or
other use
of any part of this communication is strictly prohibited,
as is the taking or
omitting of any action in reliance upon this
communication.  If you received
this communication in error or
without authorization please notify us
immediately by return e-mail
or otherwise and permanently delete the entire
communication from
any computer, disk drive, or other storage medium.
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
Received on Fri Jun 2 10:35:32 2006

This archive was generated by hypermail 2.1.8 : Thu Mar 03 2016 - 06:43:58 EST