There are two types of ACLs: access ACLs and default ACLs. An access ACL is the access control list for a specific file or directory. A default ACL can only be associated with a directory; if a file within the directory does not have an access ACL, it uses the rules of the default ACL for the directory. Default ACLs are optional.
ACLs can be configured:
- Per user
- Per group
- Via the effective rights mask
- For users not in the user group for the file
setfaclutility sets ACLs for files and directories. Use the
-moption to add or modify the ACL of a file or directory:
# setfacl -m rulesfiles
Rules (rules) must be specified in the following formats. Multiple rules can be specified in the same command if they are separated by commas.
- Sets the access ACL for…
View original post 213 more words