Free Downloads, Community Forum,
FAQs and Developer Resources


Make /Tools Your Home | Link to us

Today's posts | Posts since last visit | Most Active Topics

All Forums Register Login Search Subscriptions My Profile Inbox
Tool Warehouse FAQs Resources Help Member List Address Book Logout

ACL Troubles

  		Logged in as: Guest
Users viewing this topic: none
  Printable Version
All Forums >> [SFU / Interix / SUA Technology] >> SFU / Interix - Getting Started >> ACL Troubles Page: [1]
Login
Message << Older Topic   Newer Topic >>
ACL Troubles - Aug. 20, '02, 4:54:40 AM   
jpaduart

 

Posts: 2
Joined: Aug. 20, '02,
Status: offline 		Hello,

A very simple question, hopefully with a simple answer to it: How can I make sure that, when I create a file in Interix (for instance with the touch command), it receives the same permission settings as the parent directory? This would be normal behaviour in NT, but doesn' t seem to work in Interix... More precisely, I have a directory that should be exclusively accessible for 2 (NT-user)groups, and I would like to apply those permission settings automatically to all the new files in that directory.

Thanks in advance,

Johan Paduart.
Post #: 1
RE: ACL Troubles - Aug. 20, '02, 6:31:27 AM   
jpaduart

 

Posts: 2
Joined: Aug. 20, '02,
Status: offline 		Meanwhile I' ve read this article:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q321049 which would be helpful if I were not using Softway System' s Interix, version 2.2. Maybe the solution is similar?

(in reply to jpaduart)
Post #: 2
RE: ACL Troubles - Aug. 21, '02, 1:38:26 PM   
zjdrew

 

Posts: 7
Joined: Jul. 14, '02,
Status: offline
quote:


A very simple question, hopefully with a simple answer to it: How can I make sure that, when I create a file in Interix (for instance with the touch command), it receives the same permission settings as the parent directory?


Can' t do it. There' s no way in Unix to do this, and Interix constructs an NTFS ACL to precisely match the Unix mode bits when a file is created or chmod' d. The ACL inheritance stuff supported by NTFS isn' t exposed through the Interix APIs.

And you don' t really want to do exactly that, either, since (for example) directories need to have execute permission so they can be searched while most files do not need execute permission.

Interix doesn' t expose any control over ACLs, just mode bits. You want an ACL with two groups in it, which can' t be described through mode bits.

You can use the " cacls" command to apply a full-up NTFS ACL to the file after you' ve created it, though. Create the file mode 000 (to prevent security holes); then use system(" cacls blahblahblah" ) to set the ACL on the file in exactly the way you want it. Check MSDN for docs on how to use cacls.exe to set arbitrary ACLs. (You can even set the ACL to be " Inherit from parent" and be done with it, exactly what you asked for in the first place. )

(And you really want to get SFU 3.0 - the newest Interix makes things like running cacls much easier...)

< Message edited by zjdrew -- Aug 21, '02, 1:39:28 PM >

(in reply to jpaduart)
Post #: 3
Page:   [1]
All Forums >> [SFU / Interix / SUA Technology] >> SFU / Interix - Getting Started >> ACL Troubles Page: [1]
Jump to:





New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts


Search All Forums -

Advanced search


SPONSORS

Forum Software © ASPPlayground.NET Advanced Edition 2.5 ANSI

0.422