request for help in Linux Redhat 8.0 ACLs

request for help in Linux Redhat 8.0 ACLs

Post by tech » Sun, 29 Jun 2003 22:51:50



Hi Techies/ Nerds/ Geeks,

 I'm working on Linux Rehat 8.0 and finding major problems in
implementing ACLs since last 2 months!!! Request u to pls help
me..thanx!

Details of  my system:

I am working on Linux Red Hat 8.0/7.2 and using ACLs..
vsftpd daemon is installed for ftp service....have set all parameters
all
working fine..
i  have problem with only one group i.e. admin group - to assign read
and write permissions to more than one
group on the same directory - solution to this problem i found is if i
set
default acl on the directories then i dont need to do it for each
level of
users, if only set on  the first level of users it will inherit
accordingly...
Whenever i run the command setfacl with --test option it displays the
resulting entries but does not leave the effect of the displayed
entries.....as i am trying in test mode. If i dont use this option i
get
the error

"setfacl:<directory name/file name>:Function not implemented"

 details:

default umask:022

local_umask (in vsftpd.conf file):022 (so that when a user uploads a
file
through FTP the permissions are set accordingly)
chrooting is enabled..

the groups and users created are as follows:

groups:

ftpusers - all users will belong to this group ...this wont be the
primary
group for any user....
admin - top authorities remaining in the list are different
departments
petro - users belonging to these departments
harp -       "                     "
IT     -       "                      "
...
....and so on........
..

This way no. of departments present in organisation

Directory structure is as follows: (created by root user)
-------------------------------------------------------------------------------
/(root)
      ->FTPRead
      (owner: root, group: ftpusers)
            -> Admin
                (owner:root, primary group:admin)
            ->Petro
            (owner: root, primary group: petro)
                  ->PTA
                  (owner: root,primary group: petro)
            ->HARP
            (owner: root, primary group: harp)
                  ->BPCL
                  (owner: root, primary group: harp)
            ->IT
            (owner: root, primary group: IT)

users:
1)mrs
group: admin
home directory: /FTPRead

2)ps
group: petro
home directroy: /FTPRead

3)asd
group: harp
home directroy: /FTPRead

4)sk
group: IT
home directroy: /FTPRead

i want to set the default acl entry that will be set on admin group n
have
effect on FTPRead folder...how to do it?

let us.. once for a moment forget about ftp.. just create a directory
structure
and groups consisting users....and then u want to give access to only
one
group on the whole structure....how will u set acl entries?

pl c if any1 can help me on this...

trillions of thanx in advance..would appreciate prompt reply

best regards,
techie indian