Permission denied after using setfacl
11,412
Solution 1
As tampis allready said, to change into a directory (or list its content, or read a file in it) in linux, one needs to have execute permissions on that directory.
Change your setfacl commad to something like this:
setfacl -Rm u:B:rx /home/A/
setfacl -Rm u:C:rwx /home/A/
Solution 2
you also need execute permission along with read permission on directory
"setfacl -m u:B:r-x /home/A"
Author by
filippo
Updated on June 04, 2022Comments
-
filippo almost 2 years
There are 3 users: A, B, C.
A has mydir in his home folder
/home/A/mydirB can read
/home/AcontentsC can read and write
/home/AcontentsI tried in this way:
setfacl -Rm u:B:r /home/A/ setfacl -Rm u:C:rw /home/A/ su B ls /home/A ls: cannot access /home/A: Permission denied mydir cd /home/A -bash: cd: /home/A/: Permission denied
cat /etc/fstabs:
/dev/sdb1 /media/esterno ext3 defaults,acl 0 2
getfacl /home/A:
getfacl: Removing leading '/' from absolute path names # file: home/A # owner: A # group: A user::rwx user:B:r-- user:C:rw- group::--- mask::rw- other::--- -
Toolkit over 4 yearsthis is nuts.sudo setfacl -Rm u:user1:rx /x/x/cd /x/x/Permission denied -
cloudsurfin about 3 yearsSo does this only work because the home dir is already executable by B and C? What if you first did [root]> setfacl -Rm u:C:rwx /home/A/shared/ then [C]> cd /home/A/shared? Is it true that every parent dir needs x permissions, to traverse?
-
mofoe about 2 yearsyes, every directory in the path needs to have the executable bit set to be able tocdinto a sub folder.
